mirror of https://github.com/nunocoracao/blowfish.git synced 2025-01-22 14:35:43 -06:00

History

Nuno Coração 5fb4bd8083 config redirect		2023-01-29 22:30:24 +00:00
..
.github	config redirect	2023-01-29 22:30:24 +00:00
dist	config redirect	2023-01-29 22:30:24 +00:00
src	config redirect	2023-01-29 22:30:24 +00:00
.eslintignore	config redirect	2023-01-29 22:30:24 +00:00
.eslintrc	config redirect	2023-01-29 22:30:24 +00:00
.nvmrc	config redirect	2023-01-29 22:30:24 +00:00
.prettierignore	config redirect	2023-01-29 22:30:24 +00:00
CHANGELOG.md	config redirect	2023-01-29 22:30:24 +00:00
LICENSE	config redirect	2023-01-29 22:30:24 +00:00
package.json	config redirect	2023-01-29 22:30:24 +00:00
README.md	config redirect	2023-01-29 22:30:24 +00:00
tsconfig.json	config redirect	2023-01-29 22:30:24 +00:00

README.md

sanitize-url

Installation

npm install -S @braintree/sanitize-url

Usage

var sanitizeUrl = require("@braintree/sanitize-url").sanitizeUrl;

sanitizeUrl("https://example.com"); // 'https://example.com'
sanitizeUrl("http://example.com"); // 'http://example.com'
sanitizeUrl("www.example.com"); // 'www.example.com'
sanitizeUrl("mailto:hello@example.com"); // 'mailto:hello@example.com'
sanitizeUrl(
  "&#104;&#116;&#116;&#112;&#115;&#0000058//&#101;&#120;&#97;&#109;&#112;&#108;&#101;&#46;&#99;&#111;&#109;"
); // https://example.com

sanitizeUrl("javascript:alert(document.domain)"); // 'about:blank'
sanitizeUrl("jAvasCrIPT:alert(document.domain)"); // 'about:blank'
sanitizeUrl(decodeURIComponent("JaVaScRiP%0at:alert(document.domain)")); // 'about:blank'
// HTML encoded javascript:alert('XSS')
sanitizeUrl(
  "&#0000106&#0000097&#0000118&#0000097&#0000115&#0000099&#0000114&#0000105&#0000112&#0000116&#0000058&#0000097&#0000108&#0000101&#0000114&#0000116&#0000040&#0000039&#0000088&#0000083&#0000083&#0000039&#0000041"
); // 'about:blank'