It's still possible to disguise links as other links

[ekzyis]

Description

This code exists to avoid that one can write stacker.news which looks like it's a link to stacker.news but it's actually not (this works on Github too though).

stacker.news/components/text.js

Lines 181 to 189 in 36e9f3f

	// If [text](url) was parsed as <a> and text is not empty and not a link itself,
	// we don't render it as an image since it was probably a conscious choice to include text.
	const text = children[0]
	let url
	try {
	url = !href.startsWith('/') && new URL(href)
	} catch {
	// ignore invalid URLs
	}

Steps to Reproduce

1. Write [stacker.news](https://www.youtube.com/watch?v=dQw4w9WgXcQ)
2. Click preview
3. See that it gets rendered as a link to stacker.news but it's a link to youtube.com

Expected behavior

It should refuse to use the text chosen by the user if it looks like it's pretending to be another link

Logs
If applicable, add your browsers console logs.

Environment:
If you only experience the issue on certain devices or browsers, provide that info.

• Device: [e.g. iPhone6]
• OS: [e.g. iOS]
• Browser [e.g. chrome, safari]
• Version [e.g. 22]

Additional context

• https://stacker.news/items/682259

• Maybe we shouldn't attempt to stop this since Github also doesn't? So mark as wontfix?