hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-16 16:53:25 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
2b5684d1b9b91cff44b7b195e5f78379e81bf25c
codeql/javascript/ql/test/library-tests/HtmlSanitizers/tst.js
Asger Feldthaus 2b5684d1b9 JavaScript: Add library for HTML sanitizers
2018-08-10 12:27:39 +01:00

39 lines
1.4 KiB
JavaScript
Raw Blame History

function checkEscaped(str) {
if (str !== '<script>' && str !== '<script>' && str !== '<script>' && str !== '<script>') {
throw new Error('Not escaped: ' + str);
}
}
function checkStripped(str) {
if (str !== '') {
throw new Error('Not stripped: ' + str);
}
}
function checkNotEscaped(str) {
if (str !== '<script>') {
throw new Error('Escaped: ' + str);
}
}
checkEscaped(require('ent').encode('<script>'));
checkEscaped(require('entities').encodeHTML('<script>'));
checkEscaped(require('entities').encodeXML('<script>'));
checkEscaped(require('escape-goat').escape('<script>'));
checkEscaped(require('he').encode('<script>'));
checkEscaped(require('he').escape('<script>'));
checkEscaped(require('lodash').escape('<script>'));
checkEscaped(require('sanitizer').escape('<script>'));
checkEscaped(require('underscore').escape('<script>'));
checkEscaped(require('validator').escape('<script>'));
checkEscaped(require('xss')('<script>'));
checkEscaped(require('xss-filters').inHTMLData('<script>'));
checkStripped(require('sanitize-html')('<script>'));
checkStripped(require('sanitizer').sanitize('<script>'));
let Entities = require('html-entities').Html5Entities;
checkEscaped(new Entities().encode('<script>'));
checkEscaped(new Entities().encodeNonUTF('<script>'));
checkEscaped(Entities.encode('<script>'));
checkEscaped(Entities.encodeNonUTF('<script>'));
checkNotEscaped(new Entities().encodeNonASCII('<script>'));
Reference in New Issue View Git Blame Copy Permalink