diff --git a/webclient/app-filter.js b/webclient/app-filter.js
index 654783cb6..39ea1d637 100644
--- a/webclient/app-filter.js
+++ b/webclient/app-filter.js
@@ -82,9 +82,7 @@ angular.module('matrixWebClient')
     };
 }])
 // Exactly the same as ngSanitize's linky but instead of pushing sanitized
-// text in the addText function, we just push the raw text. This is ONLY SAFE
-// IF THIS IS USED IN CONJUNCTION WITH NG-BIND-HTML which sweeps with $sanitize
-// already.
+// text in the addText function, we just push the raw text.
 .filter('unsanitizedLinky', ['$sanitize', function($sanitize) {
   var LINKY_URL_REGEXP =
         /((ftp|https?):\/\/|(mailto:)?[A-Za-z0-9._%+-]+@)\S*[^\s.;,(){}<>"]/,