standard-html-escaper
v0.1.0
Published
Fully standards-compliant HTML escape and unescape methods. Handles all named entities and numeric escape code patterns specified in the standard.
Downloads
64
Readme
Standards-compliant HTML escaper and unescaper
Fully standards-compliant HTML escape and unescape methods.
- Escapes a minimal set of characters, essential for successful HTML parsing
- Unescapes all 2230 possible named entities, decimal and hexadecimal code patterns
- Forgiving by default. Will skip invalid escape patterns when unescaping. Optional strict mode will error when an invalid escape code is encountered
- No dependencies
Installation
npm install standard-html-escaperUsage
import { escapeHtml, unescapeHtml } from 'standard-html-escaper'
const escapedText = escapeHtml(myText)
const unescapedText = unescapeHtml(escapedText)Methods
escapeHtml(text: string)
Escapes a string.
Encodes the minimal required set of HTML special characters to their escape codes:
&:&<:<>:>':'":"
Using this minimal set of characters is generally recommended, since not all decoders handle less common escape codes correctly.
' is commonly used instead of the equivalent named entity ', to ensure compatibility with the widest range of unescape implementations.
unescapeHtml(text: string, options)
Unescapes a string.
Handles all escape patterns specified in the standard:
- All 2230 possible named entities, like
<,∠or⇌ - Decimal encoded codepoints, like
,⎬𥝄 - Hexadecimal encoded codepoints, like
š,򹅟or�
options:
strict: error when an invalid escape code is encountered. Otherwise ignores invalid escape patterns. Defaults tofalse
Other exports
htmlEntitiesTable
The full WHATWG HTML entities table, as a JavaScript object. Contains all named entities and their decoded values, both as strings and sequences of integer codepoints.
License
MIT