/datum/nanite_extra_setting/text/get_value()
return html_encode(value)
HTML injection bad. Brainwashing and potentially happiness programs are all subject to this, unless code has changed for how objective text is rendered. I don't think there's any case where nanites even need to be able to accept raw html.
silicons
452d2ad6e7