Safely render HTML in React
"Interweave is a robust React library to safely render HTML, filter attributes, autowrap text with matchers, render emoji characters, and much more.
Interweave is deemed safe as it doesn't rely on custom HTML parsers (excluding SSR) -- it relies on the browser and DOM itself for parsing. Because of this, we take full control of the parsing flow by inspecting all HTML elements and their attributes, and then filtering problematic values, avoiding vulnerabilities, and closing XSS holes.
We also take this a step further by maintaing an explicit allow, block, and banned list of HTML elements and attributes. Interweave has also been penetration tested multiple times with zero issue!"