1. function sanitizeTextInput(text) {
  2. // Remove HTML tags
  3. const cleanText = text.replace(/<[^>]*>/g, '');
  5. // Remove JavaScript code
  6. const cleanTextNoScript = cleanText.replace(/<script.*?>.*?<\/script>/g, '');
  8. // Remove URLs
  9. const cleanTextNoUrls = cleanTextNoScript.replace(/(https?:\/\/[^\s]+)/g, '');
  11. // Remove email addresses
  12. const cleanTextNoEmails = cleanTextNoUrls.replace(/[\w.-]+@[\w.-]+/, '');
  14. // Remove potentially harmful characters (e.g., control characters)
  15. const cleanTextNoHarmfulChars = cleanTextNoEmails.replace(/[\x00-\x1F\x7F]/g, '');
  17. // Remove extra whitespace
  18. const cleanTextNoExtraWhitespace = cleanTextNoHarmfulChars.replace(/\s+/g, ' ').trim();
  20. //Optional: Remove newlines and tabs
  21. const cleanTextNoNewlines = cleanTextNoExtraWhitespace.replace(/[\n\t]/g, '');
  23. return cleanTextNoNewlines;
  24. }

Add your comment