armansansd 3424b1927b first commit 2 years ago
..
.npmignore 3424b1927b first commit 2 years ago
CHANGELOG.md 3424b1927b first commit 2 years ago
LICENSE 3424b1927b first commit 2 years ago
README.md 3424b1927b first commit 2 years ago
htmlescape.js 3424b1927b first commit 2 years ago
package.json 3424b1927b first commit 2 years ago

README.md

htmlescape

Properly escape JSON for usage as an object literal inside of a <script> tag. Use htmlescape in place of JSON.stringify. For more info see JSON: The JavaScript subset that isn't.

Transformations

from to
& \\u0026
> \\u003e
< \\u003c
\u2028 \\u2028
\u2029 \\u2029

Usage

var htmlescape = require('htmlescape');
htmlescape({prop:'value'});
//=> '{"prop":"value"}'

Or in your templates:

<script>
var payload = <%= htmlescape(payload) %>;
</script>