Sanitize Class

The Sanitize class provides HTML and XSS sanitization.

s = new Sanitize

Sanitize HTML by stripping dangerous tags, keeping safe ones.

safe = s.html('<script>alert("xss")</script><p>Safe</p>')
# Returns: "<p>Safe</p>"

Strictly sanitize HTML by stripping all tags.

text = s.strict('<b>Bold</b> <script>evil()</script>')
# Returns: "Bold evil()"

Escape HTML special characters to entities.

escaped = s.escapeHtml('<div class="test">Hello & goodbye</div>')
# Returns: "&lt;div class=&quot;test&quot;&gt;Hello &amp; goodbye&lt;/div&gt;"