@kaliber/safe-json-stringify

2.0.1 • Public • Published

Safe JSON stringify

Returns a safe stringified version of a given string

Motivation

Solves potential XSS vulnerabilities when using JSON.stringify() inside dangerouslySetInnerHtml={}

Installation

yarn add @kaliber/safe-json-stringify

Usage

import { safeJsonStringify }  from '@kaliber/safe-json-stringify'

const content =  {"title":"Woooppppss","content":"</script><script>alert('gotcha!')</script>"}

export default function Component() {
  return <div dangerouslySetInnerHTML={{__html: safeJsonStringify(content)}}/>
}

Releasing a new version

Because this library is used in both the node runtime and webpack environment, the library is precompiled using kaliberjs/pack. When releasing a new version, do not forget to execute yarn build before running yarn publish. This should be done because the yarn publish command uses your local files to upload to the npm registry.

Disclaimer

This library is intended for internal use, we provide no support, use at your own risk. It does not import React, but expects it to be provided, which @kaliber/build can handle for you.

This library is not transpiled.

/@kaliber/safe-json-stringify/

    Package Sidebar

    Install

    npm i @kaliber/safe-json-stringify

    Weekly Downloads

    10

    Version

    2.0.1

    License

    MIT

    Unpacked Size

    4.96 kB

    Total Files

    10

    Last publish

    Collaborators

    • daveykropf
    • eecolor
    • jerryduijm
    • kaliber-owner
    • hjsielcken
    • nhoenderop
    • erwin-kaliber
    • janbru
    • melissabos18
    • albertkaliber
    • hylco-kaliber