Sanitizer API
The Document.parseHTML()
static method and the setHTML()
method of Element
and ShadowRoot
objects parse and insert HTML into the DOM in a way that can prevent cross-site scripting attacks. The Sanitizer
API can customize the sanitization process.
Status
Limited availability
MDN documentation
No MDN documentation found. You can search for the feature on MDN. If you believe that MDN has no documentation about this feature, you can open an issue on MDN's GitHub repository.Specifications
- HTML Sanitizer API, from Web Platform Incubator Community Group (W3C).
Browser support
- Chrome ❌
- Chrome Android ❌
- Edge ❌
- Firefox ❌
- Firefox for Android ❌
- Safari ❌
- Safari on iOS ❌
Web Platform Tests (WPT)
View the latest WPT test results for this featureView as JSON | Edit this feature | Report an issue | Web-features entry: source, dist