UNPKG

encodehtml

Version:

escaping and unescaping HTML entities – commonly needed utils to prevent XSS attacks when rendering user generated content

github.com/jsjaskaran/encodehtml

jsjaskaran/encodehtml

52 lines (38 loc) 1.13 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
var should = require('chai').should(), encodehtml = require('../index'), escape = encodehtml.escape, unescape = encodehtml.unescape; describe('#escape', function(){ it('converts & into &amp;', function(){ escape('&').should.equal('&amp;'); }); it('converts " into &quot;', function() { escape('"').should.equal('&quot;'); }); it('converts \' into &#39;', function() { escape('\'').should.equal('&#39;'); }); it('converts < into &lt;', function() { escape('<').should.equal('&lt;'); }); it('converts > into &gt;', function() { escape('>').should.equal('&gt;'); }); }); describe('#unescape', function(){ it('converts &amp; into &', function() { unescape('&amp;').should.equal('&'); }); it('converts &quot; into "', function() { unescape('&quot;').should.equal('"'); }); it('converts &#39; into \'', function() { unescape('&#39;').should.equal('\''); }); it('converts &lt; into <', function() { unescape('&lt;').should.equal('<'); }); it('converts &gt; into >', function() { unescape('&gt;').should.equal('>'); }); });