Log inSign up
postpostscript avatar
Public
HTTP (deprecated)
Fork
0 Likes
  • postpostscript avatar
    meta
    @postpostscript
    An interactive, runnable TypeScript val by postpostscript
    Script
  • postpostscript avatar
    html
    @postpostscript
    html: create sanitized HTML using tagged templates Examples import { html } from "https://esm.town/v/postpostscript/html" const unsafeInput = "<script>alert(1)</script>" console.log(html`Value: ${unsafeInput}`) // Value: &lt;script&gt;alert(1)&lt;/script&gt; These can be combined -- HTML marked as safe (instance is RawHTML ) will be directly inserted: const scripts = html`<script>alert(1)</script>` console.log(html`<head> ${scripts} </head>`.toString()) // <head> // <script>alert(1)</script> // </head> To easily create HTTP Response outputs like @stevekrouse/html, use the htmlResponse utility: import { html, htmlResponse } from "https://esm.town/v/postpostscript/html"; export default function(req: Request) { return htmlResponse` Request URL: ${decodeURIComponent(req.url)} `; } Tests: @postpostscript/htmlTest
    Script
  • neverstew avatar
    user
    @neverstew
    An interactive, runnable TypeScript val by neverstew
    Script
  • stevekrouse avatar
    alias
    @stevekrouse
    Forked from neverstew/alias
    Script
1
Next
postpostscript-profileimage.web.val.run
March 6, 2024