@blocklet/xss
Version:
blocklet prevent xss attack
20 lines (19 loc) • 424 B
JavaScript
import { initSanitize, isSvgFile, sanitizeSvg } from "./utils.js";
export * from "./utils.js";
export function xss(options = {}) {
const sanitize = initSanitize(options);
return (req, res, next) => {
["body", "params", "headers", "query"].forEach((k) => {
if (req[k]) {
req[k] = sanitize(req[k]);
}
});
next();
};
}
export default {
xss,
initSanitize,
isSvgFile,
sanitizeSvg
};