9 lines
249 B
JavaScript
9 lines
249 B
JavaScript
const escapeDiv = document.createElement("div");
|
|
/**
|
|
* @param {string} text Potentially dangerous text
|
|
* @returns {string} Text safe to embed in HTML
|
|
**/
|
|
function escapeHtml(text) {
|
|
escapeDiv.textContent = text;
|
|
return escapeDiv.innerHTML;
|
|
}
|