DEV Community

lionel-rowe
lionel-rowe

Posted on

Easily and safely escape HTML in one line

x => Object.assign(document.createElement('div'), { textContent: x }).innerHTML
Enter fullscreen mode Exit fullscreen mode

True, you could also do it with

x => x.replace(/&/g, "&amp;").replace(/</g, "&lt;").replace(/>/g, "&gt;").replace(/"/g, "&quot;").replace(/'/g, "&#039;")
Enter fullscreen mode Exit fullscreen mode

or similar, but if you do it the first way you don't have to remember the HTML entities πŸ™‚

Discussion (0)