The woes of sanitizing SVGs

Threedominant themes in the discussion

1. Security & sanitization concerns

   "SVGs should never have supported scripting." – NL807

2. Preference for a tiny, safe SVG subset

   "My first thought is \"support a tiny subset of svg that probably still covers 90% of real-world use cases\"." – andybak

3. Safe embedding approaches (e.g., using <img>‑style restrictions or new formats)

   "The way linked SVGs render from within img tags ... is basically perfect for SVG images ... External resources and scripting are blocked while still rendering nearly all SVGs correctly." – varun_ch