Just a note to plugin devs that you should not use the function elgg_format_url().
Although it does not describe itself as doing "HTML escaping", its behavior might give that impression, so it's being removed in Elgg 3.
It no longer serves any purpose if you're using one of these APIs, as they escape already:
If you were (incorrectly) using it to escape URLs in raw HTML, update your code to use one of the APIs above.
info@elgg.org
Security issues should be reported to security@elgg.org!
©2014 the Elgg Foundation
Elgg is a registered trademark of Thematic Networks.
Cover image by RaĆ¼l Utrera is used under Creative Commons license.
Icons by Flaticon and FontAwesome.