simple-fs-server/fresh-main/src/server/htmlescape_test.ts

import { htmlEscapeJsonString } from "./htmlescape.ts";
import { assertEquals } from "../../tests/deps.ts";

Deno.test("with angle brackets should escape", () => {
  const evilObj = { evil: "<script></script>" };
  assertEquals(
    htmlEscapeJsonString(JSON.stringify(evilObj)),
    '{"evil":"\\u003cscript\\u003e\\u003c/script\\u003e"}',
  );
});

Deno.test("with angle brackets should parse back", () => {
  const evilObj = { evil: "<script></script>" };
  assertEquals(
    JSON.parse(htmlEscapeJsonString(JSON.stringify(evilObj))),
    evilObj,
  );
});
init 3 2023-01-14 03:03:22 +09:00			`import { htmlEscapeJsonString } from "./htmlescape.ts";`
			`import { assertEquals } from "../../tests/deps.ts";`

			`Deno.test("with angle brackets should escape", () => {`
			`const evilObj = { evil: "<script></script>" };`
			`assertEquals(`
			`htmlEscapeJsonString(JSON.stringify(evilObj)),`
			`'{"evil":"\\u003cscript\\u003e\\u003c/script\\u003e"}',`
			`);`
			`});`

			`Deno.test("with angle brackets should parse back", () => {`
			`const evilObj = { evil: "<script></script>" };`
			`assertEquals(`
			`JSON.parse(htmlEscapeJsonString(JSON.stringify(evilObj))),`
			`evilObj,`
			`);`
			`});`