Web features explorer

Unsanitized HTML parsing methods

Newly Available (since 2025-09-15)
Expected to be Widely Available on 2028-03-15

The Document.parseHTMLUnsafe() static method parses HTML into a DOM tree, while the setHTMLUnsafe() method of Element and ShadowRoot parses and inserts HTML into an existing tree. No sanitization applies to these methods, so never call them with user-provided HTML strings.

Browser support

  • Chrome 124 Released on 2024-04-16
  • Chrome Android 124 Released on 2024-04-16
  • Edge 124 Released on 2024-04-18
  • Firefox 128 Released on 2024-07-09
  • Firefox for Android 128 Released on 2024-07-09
  • Safari 26 Released on 2025-09-15
  • Safari on iOS 26 Released on 2025-09-15