WICG Publishes New HTML Sanitizer API Proposal against mXSS Attacks

The Web Platform Incubator Community Group recently published the Draft Community Group Report for the … Read more WICG Publishes New HTML Sanitizer API Proposal against mXSS Attacks

The Web Platform Incubator Community Group recently published the Draft Community Group Report for the HTML Sanitizer API. The HTML Sanitizer API lets developers take untrusted strings of HTML and sanitize those strings for safe insertion into a document’s DOM. The most common use case of HTML string sanitization is to prevent cross-site scripting (XSS) attacks.

By Bruno Couriol
Source: InfoQ JavaScript



Leave a Reply

Your email address will not be published. Required fields are marked *