@davep@adam@Mer__edith it would make sense for a vulnerability to be in the preview fetcher (since it is the only time signal will interact with arbitrary content from other servers), this does not mean being sent a preview can trigger the bug (hopefully the "rich" content is sanitized both ways)
Add comment