js-xss/lib/index.js

/**
 * xss
 *
 * @author Zongmin Lei<leizongmin@gmail.com>
 */

var DEFAULT = require("./default");
var parser = require("./parser");
var FilterXSS = require("./xss");

/**
 * filter xss function
 *
 * @param {String} html
 * @param {Object} options { whiteList, onTag, onTagAttr, onIgnoreTag, onIgnoreTagAttr, safeAttrValue, escapeHtml }
 * @return {String}
 */
function filterXSS(html, options) {
  var xss = new FilterXSS(options);
  return xss.process(html);
}

exports = module.exports = filterXSS;
exports.filterXSS = filterXSS;
exports.FilterXSS = FilterXSS;
for (let i in DEFAULT) exports[i] = DEFAULT[i];
for (let i in parser) exports[i] = parser[i];

// using `xss` on the browser, output `filterXSS` to the globals
if (typeof window !== "undefined") {
  window.filterXSS = module.exports;
}

// using `xss` on the WebWorker, output `filterXSS` to the globals
function isWorkerEnv() {
  return (
    typeof self !== "undefined" &&
    typeof DedicatedWorkerGlobalScope !== "undefined" &&
    self instanceof DedicatedWorkerGlobalScope
  );
}
if (isWorkerEnv()) {
  self.filterXSS = module.exports;
}
通过基本的xss白名单测试 2014-02-13 14:58:36 +08:00			`/**`
translate all comments to English 2017-12-21 14:19:10 +08:00			`* xss`
通过基本的xss白名单测试 2014-02-13 14:58:36 +08:00			`*`
translate all comments to English 2017-12-21 14:19:10 +08:00			`* @author Zongmin Lei<leizongmin@gmail.com>`
通过基本的xss白名单测试 2014-02-13 14:58:36 +08:00			`*/`

reformat by prettier 2017-12-21 14:22:34 +08:00			`var DEFAULT = require("./default");`
			`var parser = require("./parser");`
			`var FilterXSS = require("./xss");`
通过基本的xss白名单测试 2014-02-13 14:58:36 +08:00
			`/**`
translate all comments to English 2017-12-21 14:19:10 +08:00			`* filter xss function`
通过基本的xss白名单测试 2014-02-13 14:58:36 +08:00			`*`
translate all comments to English 2017-12-21 14:19:10 +08:00			`* @param {String} html`
			`* @param {Object} options { whiteList, onTag, onTagAttr, onIgnoreTag, onIgnoreTagAttr, safeAttrValue, escapeHtml }`
通过基本的xss白名单测试 2014-02-13 14:58:36 +08:00			`* @return {String}`
			`*/`
reformat by prettier 2017-12-21 14:22:34 +08:00			`function filterXSS(html, options) {`
通过基本的xss白名单测试 2014-02-13 14:58:36 +08:00			`var xss = new FilterXSS(options);`
			`return xss.process(html);`
			`}`

			`exports = module.exports = filterXSS;`
export function filterXSS 2019-03-20 14:07:13 +08:00			`exports.filterXSS = filterXSS;`
通过基本的xss白名单测试 2014-02-13 14:58:36 +08:00			`exports.FilterXSS = FilterXSS;`
feat: add eslint:recommended check 2022-03-09 19:39:57 +08:00			`for (let i in DEFAULT) exports[i] = DEFAULT[i];`
			`for (let i in parser) exports[i] = parser[i];`
通过基本的xss白名单测试 2014-02-13 14:58:36 +08:00
translate all comments to English 2017-12-21 14:19:10 +08:00			// using `xss` on the browser, output `filterXSS` to the globals
reformat by prettier 2017-12-21 14:22:34 +08:00			`if (typeof window !== "undefined") {`
通过基本的xss白名单测试 2014-02-13 14:58:36 +08:00			`window.filterXSS = module.exports;`
			`}`
feat: support for Web Worker env issue #124 2018-05-24 15:49:29 +08:00
			// using `xss` on the WebWorker, output `filterXSS` to the globals
			`function isWorkerEnv() {`
style: reformat all source code by prettier 2021-05-06 13:32:47 +08:00			`return (`
			`typeof self !== "undefined" &&`
			`typeof DedicatedWorkerGlobalScope !== "undefined" &&`
			`self instanceof DedicatedWorkerGlobalScope`
			`);`
feat: support for Web Worker env issue #124 2018-05-24 15:49:29 +08:00			`}`
			`if (isWorkerEnv()) {`
			`self.filterXSS = module.exports;`
			`}`