lettersanitizer
Advanced tools
DOM-based HTML email sanitizer for in-browser email rendering.
Used in react-letter and vue-letter.
lettersanitizer is available on npm, you can install it with either npm or yarn:
npm install lettersanitizer
# or:
yarn install lettersanitizer
import { sanitize } from 'lettersanitizer';
sanitize('<b>test</b><script>test</script>', '', { id: 'test' });
// <div id="test"><b>test</b></div>
lettersanitizer exposes a sanitize function that uses DOMParser to sanitize the HTML content of messages and returns HTML text.
text is used for fallback text in case of no HTML source being available. Plain text in that case is processed into safe HTML output.
interface SanitizerOptions {
id?: string;
dropAllHtmlTags?: boolean;
rewriteExternalResources?: (url: string) => string;
rewriteExternalLinks?: (url: string) => string;
allowedSchemas?: string[];
preserveCssPriority?: boolean;
noWrapper?: boolean;
}
function sanitize(html: string, text?: string, options?: SanitizerOptions);
FAQs
DOM-based HTML email sanitizer for in-browser email rendering.
We found that lettersanitizer demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Socket Threat Research maps a rare inside look at OtterCookie’s npm-Vercel-GitHub chain, adding 197 malicious packages and evidence of North Korean operators.
Research
Socket researchers identified a malicious Chrome extension that manipulates Raydium swaps to inject an undisclosed SOL transfer, quietly routing fees to an attacker wallet.
Research
/Security News
Another wave of Shai-Hulud campaign has hit npm with more than 500 packages and 700+ versions affected.