Question 1

How to create a custom HTML sanitizer in Elixir?

Accepted Answer

Use HtmlSanitizeEx to define a custom scrubber by creating a module that specifies allowed tags and attributes. For example, you can allow only 'a' tags with 'href' restricted to 'https' using allow_tag_with_uri_attributes. This is detailed in the README's custom scrubber examples.

Question 2

HtmlSanitizeEx vs Phoenix.HTML.Safe for sanitization?

Accepted Answer

HtmlSanitizeEx is a standalone sanitizer with customizable rules for user-generated content, ideal for fine-grained control. Phoenix.HTML.Safe is part of the Phoenix framework for escaping HTML in templates, offering integrated safety but less flexibility for third-party HTML.

Question 3

How to allow images in HtmlSanitizeEx?

Accepted Answer

Extend a built-in scrubber or create a custom one to permit 'img' tags with attributes like 'src'. For instance, use the :extend option on basic_html and add allow_tag_with_these_attributes for 'img' with 'src' and 'alt', as shown in the extending scrubbers section.

Question 4

Does HtmlSanitizeEx handle SVG sanitization?

Accepted Answer

The library focuses on HTML sanitization and may not fully support SVG elements by default. You would need to create a custom scrubber that specifically allows SVG tags and attributes, which requires additional configuration and testing.

Question 5

Performance of HtmlSanitizeEx for large HTML inputs?

Accepted Answer

It is described as fast but uses mochiweb for parsing, so performance might vary with very large or complex documents. There are no built-in benchmarks, so testing with your specific use case is recommended to ensure it meets requirements.

html_sanitize_ex

What is html_sanitize_ex?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions