Massimo Artizzu πŸ‡ΊπŸ‡¦πŸ”±Feb 25
Firefox for Web Developers
You can throw away innerHTML and replace it with the new setHTML(), which has a built-in sanitizer. Here's how it works:
Feb 25 at 12:07pmBuffer
Show threadFirefox for Web DevelopersFeb 25
Here are the full docs https://developer.mozilla.org/en-US/docs/Web/API/HTML_Sanitizer_API
HTML Sanitizer API - Web APIs | MDN

The HTML Sanitizer API allows developers to take strings of HTML and filter out unwanted elements, attributes, and other HTML entities when they are inserted into the DOM or a shadow DOM.

MDN Web Docs
Show threadXelaFeb 25
@firefoxwebdevs awesome! Now we only have to wait for "baseline" πŸ˜‰
Show threadFirefox for Web DevelopersFeb 25
@xela hopefully it won't be too long! Just Safari to go
Show threadBrookeFeb 25
@firefoxwebdevs It's back! πŸŽ‰
Show threadJon Koops πŸ‡ͺπŸ‡ΊFeb 25
@firefoxwebdevs Fantastic! Can’t wait for this to be in baseline!
Show threadRyan JohnsonFeb 25
@firefoxwebdevs this is fantastic! This has bitten me in the past, and I'm excited to be able to use this soon!
Show threadLeonardo Di OttioFeb 26

@firefoxwebdevs Looks great but why is it called setHTML? What is the β€˜set’ supposed to mean?

#WebDev #HTML

Show threadFirefox for Web DevelopersFeb 26

@LeonardoDiOttio I see what you're getting at, but replaceChildrenWithParsedHTML is a bit long.

Fwiw when you set innerHTML you're not really setting the HTML either.