DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:
I understand that DOMPurify comes with a default configuration and that this configuration is quite flexible and one can change it according to one's needs.
What exactly is allowed / disallowed by the default configuration?
VentuzVictorPerez
commented
5 months ago
Hi there!
I understand that DOMPurify comes with a default configuration and that this configuration is quite flexible and one can change it according to one's needs.
What exactly is allowed / disallowed by the default configuration?
Thank you very much.