Log inSign up
postpostscript avatar
Public
Script
Fork
0 Likes
postpostscript avatar
html
@postpostscript
Script
html: create sanitized HTML using tagged templates Examples import { html } from "https://esm.town/v/postpostscript/html" const unsafeInput = "<script>alert(1)</script>" console.log(html`Value: ${unsafeInput}`) // Value: &lt;script&gt;alert(1)&lt;/script&gt; These can be combined -- HTML marked as safe (instance is RawHTML ) will be directly inserted: const scripts = html`<script>alert(1)</script>` console.log(html`<head> ${scripts} </head>`.toString()) // <head> // <script>alert(1)</script> // </head> To easily create HTTP Response outputs like @stevekrouse/html, use the htmlResponse utility: import { html, htmlResponse } from "https://esm.town/v/postpostscript/html"; export default function(req: Request) { return htmlResponse` Request URL: ${decodeURIComponent(req.url)} `; } Tests: @postpostscript/htmlTest
162
1
postpostscript avatar
provideBlobToHtml
@postpostscript
Script
An interactive, runnable TypeScript val by postpostscript
2
0
postpostscript avatar
htmlAsync
@postpostscript
Script
Forked from postpostscript/html
7
1
1
Next
February 28, 2024