Escape reserved HTML characters
Escape a string to be safe for use in HTML by replacing all
&<>'") with their respective entity.
var escape = require"html-escape";var xss = "Hello <script>while(1);</script> world!";// Produce html that could be safely usedconsole.log"<p>" + escapexss + "</p>";
npm install html-escape