I'll change handling of text/plain (and any other bit of Content-Type sniffing) in SimplePie if and only if you can convince Adam/Ian to change http://tools.ietf.org/id/draft-abarth-mime-sniff. Treating text/plain as a privileged type (such as any syndication format) allows scripting, which opens up whole extra security holes on top of what it claims to be. text/plain most certainly is not a media type that represents any sort of XML, and treating something sent as text/plain as a feed is most certainly wrong.
Replying to westi:
I think the best option here is to turn off auto-discovery in SimplePie.
rmccue is there any benifit of using
set_autodiscovery_level(SIMPLEPIE_LOCATOR_NONE)overforce_feed()or do both end up doing the same thing?
The former stops auto-discovery from looking for a feed in an HTML document (via link[@rel='feed']/@href or link[@rel='alternate' and (@type='application/rss+xml' or @type='application/atom+xml')]/@href) whereas the latter forces the URL given to be treated as a feed regardless of media type.
