Stared into Node's abyss. It stares back. Terror overwhelms me: NPM: "137,720 downloads in the last day"https://github.com/component/escape-html/blob/master/index.js …
-
-
I think the canonical solution is the html escaper in caja (usable without the more esoteric parts). Must be available on npm.
-
: I was actually expecting there to be something Gumbo-based at this point w/ template string helpers. Too much to ask?
- 3 more replies
New conversation -
-
-
: I mean, in the Node community's defense, I'm sure *some* uses of "escape-html" aren't trivially XSSable.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
& Web Standards TL; Blink API OWNER
Named PWAs w/
DMs open. Tweets my own; press@google.com for official comms.