Skip to content

Latest commit

 

History

History

html-escape

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
.npmignore
.npmignore
 
 
README.md
README.md
 
 
example.js
example.js
 
 
index.js
index.js
 
 
package.json
package.json
 
 
test.js
test.js
 
 

README.md

html-escape

Escape a string to be safe for use in HTML by escaping reserved characters (&<>'").

Example

> var escape = require("html-escape");
> var xssAttempt = "Hello <script>while(1);</script> world!";
> // Output safe html
> console.log("<p>" + escape(xssAttempt) + "</p>");
"<p>Hello &lt;script&gt;while(1);&lt;/script&gt; world!</p>"

Installation

npm install html-escape