You can effectively ban a user by sending a corrupted message

Was making a quick bot and found out that you can send a message with custom contents. It's not validated on either server-side or client-side, resulting in crashes once someone opens the chat the message was sent it. ~~This message doesn't appear in previews so the app _technically_ remains useable, but requires reloads as soon as you open DMs with user who sent you this message.~~ If you actually confirm it then it does appear in preview and effectively bans the user (see second screenshot).

Topic that raised this error (notice the nested text object): 
```json
{
  "id": "eb0c8144-4e25-4e57-8cd6-cdbef85fa3b6",
  "revision": 81,
  "data": {
    "detailRevision": 81,
    "tagRevision": 81,
    "topicDetail": {
      "guid": "4966b2adcae260baa492446e66efbd6efd127d0e42653ef66eb33e9bab1ddbab",
      "dataType": "superbasictext",
      "data": "{\"text\": {\"text\": \"pong\", \"textColor\": null, \"textSize\": null, \"assets\": null}}",
      "created": 1775548125,
      "updated": 1775548125,
      "status": "unconfirmed",
      "transform": "complete"
    }
  }
}
```

Error:

<img width="738" height="312" alt="Image" src="https://github.com/user-attachments/assets/de4d7b65-03c9-4035-a82d-5f58116f948c" />

Error that appears when it tries to load a preview of a confirmed message with weird data.text:

<img width="1286" height="434" alt="Image" src="https://github.com/user-attachments/assets/3cd4ba28-61ac-4d7c-8184-63cc44315f2f" />

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

You can effectively ban a user by sending a corrupted message #189

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

You can effectively ban a user by sending a corrupted message #189

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions