SanitizeHTML

Sanitizes unsafe HTML to protect against XSS attacks using the OWASP Java HTML Sanitizer.

The policy can be one of the following:

If no policy is provided, all policies are used.

You can also provide a OWASP {@link PolicyFactory} object to use a custom policy.

Method Signature

SanitizeHTML(string=[string], policy=[any])

Argument

Type

Required

Description

Default

string

true

The string to sanitize.

policy

any

false

The policy to use for sanitization. If not provided, all policies are used. This can also be a ${link PolicyFactory} object.

Last updated 5 months ago

Was this helpful?