sanitized

1.2.1 • Public • Published

sanitized

sanitized() is a recursive function that'll sanitize a string or ALL strings in a json input. It's great for sanitizing form data before it gets submitted to the back-end (re: protection against XSS attacks).

It accepts two params the first being the value to sanitize, and the second being options to pass to DOMPurify.

Installation

$ npm i sanitized

Usage

const sanitized = require("sanitized");
// or,
// import sanitized from "sanitized"

const test = [
  "<svg><g/onload=alert(2)//<p>",
  {
    name1: [
      '<math><mi//xlink:href="data:x,<script>alert(4)</script>">',
      { name2: "<p>abc<iframe//src=jAva&Tab;script:alert(3)>def" },
    ],
  },
];

sanitized(test);

// Result:
//
// [
//  "<svg><g></g></svg>",
//  { name1: ["<math><mi></mi></math>", { name2: "<p>abc</p>" }] }
// ];

Readme

Keywords

Package Sidebar

Install

npm i sanitized

Weekly Downloads

32

Version

1.2.1

License

ISC

Unpacked Size

2.38 kB

Total Files

3

Last publish

Collaborators

  • nameer