Polyfill for the Sanitizer API specification.

Usage

The Sanitizer API is still under heavy development. We do not recommend relying on the polyfill for stability and can not fully promise the same security guarantees as the finished API will.

About

The polyfill might provide a shim on top of DOMPurify, that mainly rewrites the specified configuration object into a DOMPurify configuration.

DOMPurify is more interesting than other libraries, as it relies on the current browser's HTML parsing behavior (it is built on top of the NodeIterator interface).

Demo

There's a Demo page that loads all of the polyfill scripts and then does nothing. By default, the polyfill will bail out if you already have a Sanitizer object defined. But that can be easily overridden by clicking the ¶.

It might useful to test Element.setHTML

Name		Name	Last commit message	Last commit date
Latest commit History 349 Commits
.github		.github
demo		demo
src		src
.eslintrc.json		.eslintrc.json
.gitignore		.gitignore
.prettierignore		.prettierignore
CODE_OF_CONDUCT.md		CODE_OF_CONDUCT.md
LICENSE		LICENSE
README.md		README.md
SECURITY.md		SECURITY.md
package-lock.json		package-lock.json
package.json		package.json
rollup.config.browser-min.js		rollup.config.browser-min.js
rollup.config.browser.js		rollup.config.browser.js
rollup.config.cjs.js		rollup.config.cjs.js
rollup.config.esm.js		rollup.config.esm.js

License

mozilla/sanitizer-polyfill

Folders and files

Latest commit

History

Repository files navigation

Polyfill for the Sanitizer API specification.

Usage

About

About

Topics

Resources

License

Code of conduct

Security policy

Stars

Watchers

Forks

Languages