Handing of bad media types (html!)
Currently you can try to upload a html file.
What happens currebtly? It sticks in the queue, because celery goes
crazy on it.
The good news: It does not end up in a public place.
What should NEVER, ever happen: The file being put in a public
place. It's the best XSS attack to come up with.
Rating this high, because this needs to be right for security
New → In Progress
In Progress → Closed