This vulnerability wouldn't be a problem if every editor (and diff viewer) came with something like [0] as standard. CI pipelines should probably also include an equivalent step.<p>[0] <a href="https://atom.io/packages/highlight-bad-chars" rel="nofollow">https://atom.io/packages/highlight-bad-chars</a>