Skip to content

Improve 'prevent-innerHTML' — support 'setHTMLUnsafe' and 'setHTML' methods #548

New issue
New issue
Open
Open
Improve 'prevent-innerHTML' — support 'setHTMLUnsafe' and 'setHTML' methods#548
Assignees
maximtop
Labels
Priority: P4enhancementImprovement of existent feature
@piquark6046

Description

@piquark6046
piquark6046
opened on Jan 26, 2026

The prevent-innerHTML scriptlet currently only covers innerHTML setter.

It should also cover the newer Element.setHTMLUnsafe() and Element.setHTML() methods, which can be used as alternatives to innerHTML.

References:
https://developer.mozilla.org/en-US/docs/Web/API/Element/setHTMLUnsafe
https://developer.mozilla.org/en-US/docs/Web/API/Element/setHTML

Metadata

Metadata

Assignees

Labels

Priority: P4enhancementImprovement of existent feature

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions