Skip to content

lorand-horvath/xss-clean

 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Node.js XSS-Clean

Build Status Coverage Status

Node.js Connect middleware to sanitize user input coming from POST body, GET queries, and url params. Works with Express, Restify, or any other Connect app.

How to Use

npm install xss-clean --save
const restify = require('restify')
const xss = require('xss-clean')

const app = restify.createServer()

app.use(restify.bodyParser())

// make sure this comes before any routes
app.use(xss())

app.listen(8080)

This will sanitize any data in req.body, req.query, and req.params. You can also access the API directly if you don't want to use as middleware.

const clean = require('xss-clean/lib/xss').clean

const cleaned = clean('<script></script>')
// will return "&lt;script>&lt;/script>"

License

MIT © Jason Maurer

About

Middleware to sanitize user input

Resources

Stars

Watchers

Forks

Packages

No packages published

Languages

  • JavaScript 100.0%