UNPKG

htmlescape

Version:

Properly escape JSON for usage as an object literal inside of a `<script>` tag

github.com/zertosh/htmlescape

zertosh/htmlescape

31 lines (22 loc) 663 B
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
# htmlescape Properly escape JSON for usage as an object literal inside of a `<script>` tag. Use `htmlescape` in place of `JSON.stringify`. For more info see [JSON: The JavaScript subset that isn't](http://timelessrepo.com/json-isnt-a-javascript-subset). ## Transformations | from | to | | -------- |:---------:| | `&` | `\\u0026` | | `>` | `\\u003e` | | `<` | `\\u003c` | | `\u2028` | `\\u2028` | | `\u2029` | `\\u2029` | ## Usage ```js var htmlescape = require('htmlescape'); htmlescape({prop:'value'}); //=> '{"prop":"value"}' ``` Or in your templates: ```html <script> var payload = <%= htmlescape(payload) %>; </script> ```