Open jerod33 opened 3 years ago
Although I think it's OK to add these two tags as defaults, you can also change the default whitelist by xss.getDefaultWhiteList()
var source = `<progress value="32" max="100"> 32% </progress>`
var whiteList = xss.getDefaultWhiteList()
whiteList.progress = ["value", "max"]
var html = xss(source, {whiteList})
console.log('%s\nconvert to:\n%s', source, html);
Hi, is it possible to add
<progress> or <meter>
in the allowed list? Thank you.