| Server IP : 172.67.131.151 / Your IP : 172.71.81.82 Web Server : Apache System : Linux keen-cori.18-142-40-148.plesk.page 5.15.0-1084-aws #91~20.04.1-Ubuntu SMP Fri May 2 06:59:36 UTC 2025 x86_64 User : simottodesign.com_2tntp341vs7 ( 10011) PHP Version : 8.3.31 Disable Function : opcache_get_status MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : ON | Pkexec : ON Directory : /var/www/vhosts/simottodesign.com/httpdocs/wp-includes/js/ |
Upload File : |
/**
* @output wp-includes/js/wp-sanitize.js
*/
/* eslint-env es6 */
( function () {
window.wp = window.wp || {};
/**
* wp.sanitize
*
* Helper functions to sanitize strings.
*/
wp.sanitize = {
/**
* Strip HTML tags.
*
* @param {string} text - Text to strip the HTML tags from.
*
* @return {string} Stripped text.
*/
stripTags: function( text ) {
if ( 'string' !== typeof text ) {
return '';
}
const domParser = new DOMParser();
const htmlDocument = domParser.parseFromString(
text,
'text/html'
);
/*
* The following self-assignment appears to be a no-op, but it isn't.
* It enforces the escaping. Reading the `innerText` property decodes
* character references, returning a raw string. When written, however,
* the text is re-escaped to ensure that the rendered text replicates
* what it's given.
*
* See <https://github.com/WordPress/wordpress-develop/pull/10536#discussion_r2550615378>.
*/
htmlDocument.body.innerText = htmlDocument.body.innerText;
// Return the text with stripped tags.
return htmlDocument.body.innerHTML;
},
/**
* Strip HTML tags and convert HTML entities.
*
* @param {string} text - Text to strip tags and convert HTML entities.
*
* @return {string} Sanitized text.
*/
stripTagsAndEncodeText: function( text ) {
let _text = wp.sanitize.stripTags( text ),
textarea = document.createElement( 'textarea' );
try {
textarea.textContent = _text;
_text = wp.sanitize.stripTags( textarea.value );
} catch ( er ) {}
return _text;
}
};
}() );