fix: remove data layer anchor tag sanitization, keep frontend-only fix

Vasuk12 · Vasuk12 · commit 2bcecde33ee6 · 2025-12-01T04:00:33.000Z
Signed-off-by: Vasu &lt;vasukhare88@gmail.com&gt;
diff --git a/osv/sources.py b/osv/sources.py
@@ -163,21 +163,10 @@ def _get_nested_vulnerability(data, key_path=None):
   return data
 
 
-def _sanitize_anchor_tags(text):
-  if not text or not isinstance(text, str):
-    return text
-  pattern = r'<a\s+[^>]*name=["\'][^"\']*["\'][^>]*>\s*</a>|<a\s+[^>]*name=["\'][^"\']*["\'][^>]*/>'
-  return re.sub(pattern, '', text, flags=re.IGNORECASE)
-
-
 def parse_vulnerability_from_dict(data, key_path=None, strict=False):
   """Parse vulnerability from dict."""
   data = _get_nested_vulnerability(data, key_path)
 
-  # Sanitize anchor tags from details field if present
-  if isinstance(data, dict) and 'details' in data and data['details']:
-    data['details'] = _sanitize_anchor_tags(data['details'])
-
   try:
     jsonschema.validate(data, load_schema())
   except jsonschema.exceptions.ValidationError as e:
