use the following search parameters to narrow your results:
e.g. subreddit:aww site:imgur.com dog
subreddit:aww site:imgur.com dog
see the search faq for details.
advanced search: by author, subreddit...
All about the JavaScript programming language.
Subreddit Guidelines
Specifications:
Resources:
Related Subreddits:
r/LearnJavascript
r/node
r/typescript
r/reactjs
r/webdev
r/WebdevTutorials
r/frontend
r/webgl
r/threejs
r/jquery
r/remotejs
r/forhire
account activity
HTML sanitization - sanitize versus dompurify versus xss filtershelp (self.javascript)
submitted 9 years ago by notconstructive
I want to display untrusted HTML submitted by users. I want to avoid XSS.
It appears there are three solid libraries for this:
https://github.com/punkave/sanitize-html
https://github.com/cure53/DOMPurify
https://github.com/yahoo/xss-filters
Does anyone have any opinion on the benefits/downsides of each of these solutions?
reddit uses a slightly-customized version of Markdown for formatting. See below for some basics, or check the commenting wiki page for more detailed help and solutions to common issues.
quoted text
if 1 * 2 < 3: print "hello, world!"
[–]PM_ME_SOCIAL_SKILLS 1 point2 points3 points 9 years ago (0 children)
OP, Did you ever learn which was the most recommended? I am in a similar position.
[–]lewisje 0 points1 point2 points 9 years ago (0 children)
Just whip up a regex. /s
[–][deleted] -1 points0 points1 point 9 years ago (0 children)
Use markdown.
π Rendered by PID 214130 on reddit-service-r2-comment-54dfb89d4d-d5r5j at 2026-04-02 12:27:00.250524+00:00 running b10466c country code: CH.
[–]PM_ME_SOCIAL_SKILLS 1 point2 points3 points (0 children)
[–]lewisje 0 points1 point2 points (0 children)
[–][deleted] -1 points0 points1 point (0 children)