Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

GMail (and Fastmail) are rendering the email. It just happens that the email and we webbrowser are both HTML. In no case should they just literally forward the email HTML to the browser. They scrub JavaScript, non-whitelisted HTML elements, rewrite links/external resources including tracking pixels.

You can see the raw email with "show original" in the options



> They scrub ... non-whitelisted HTML elements

Any documenation on that list?


https://help.zapier.com/hc/en-us/articles/8496101927181-What...

I don't think there is an official list. It is security-related and changes over time


Thanks.

> It is security-related and changes over time

That would explain why new prints of an old message don't match old.


Meh, macOS’s Mail.app approach of everything-but-the-JavaScript is great and I wish outlook & Gmail did it too




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: