Is sanitize-html safe to use?

sanitize-html has no known vulnerabilities on the latest version (2.17.5). DepScope rates its health at 91/100 (low risk).

What is the latest version of sanitize-html?

The latest version of sanitize-html is 2.17.5, released 2026-06-10.

Does sanitize-html have known vulnerabilities?

No known vulnerabilities on the latest version of sanitize-html.

Is sanitize-html deprecated?

No, sanitize-html is actively maintained. Latest release: 2.17.5 (2026-06-10).

What are alternatives to sanitize-html?

Popular alternatives to sanitize-html in npm include: ?, semver, minimatch, debug, brace-expansion.

What license does sanitize-html use?

sanitize-html is licensed under MIT.

sanitize-html

npmv2.17.5

Clean up user-submitted HTML, preserving allowlisted elements and allowlisted attributes on a per-element basis

License MITpermissive124 versions4 maintainers7 deps8,334,733 weekly dl

apostrophecms/apostrophe

/ 100

Health

safe to use

[email protected] is safe to use (health: 91/100)

Health breakdown0 – 100

25/25

maintenance

17/20

popularity

25/25

security

15/15

maturity

9/15

community

0/15

popularity_floor

Vulnerabilities

none known

Bundle & TypeScript

📦

Bundle Size

228.4 KBminified

90.0 KB gzipped

7 direct dependencies

🌟

TypeScript

7/10typed

Types from @types/sanitize-html (DefinitelyTyped)

Quality signals

Publish security

npm signed

Health History

Dependency Tree

License Audit

Dependencies (7)

deepmerge escape-string-regexp htmlparser2 is-plain-object parse-srcset postcss launder

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/npm/sanitize-html

sanitize-html

npmv2.17.5

Clean up user-submitted HTML, preserving allowlisted elements and allowlisted attributes on a per-element basis

License MITpermissive124 versions4 maintainers7 deps8,334,733 weekly dl

apostrophecms/apostrophe

/ 100

Health

safe to use

[email protected] is safe to use (health: 91/100)

Health breakdown0 – 100

25/25

maintenance

17/20

popularity

25/25

security

15/15

maturity

9/15

community

0/15

popularity_floor

Vulnerabilities

none known

Bundle & TypeScript

📦

Bundle Size

228.4 KBminified

90.0 KB gzipped

7 direct dependencies

🌟

TypeScript

7/10typed

Types from @types/sanitize-html (DefinitelyTyped)

Quality signals

Publish security

npm signed

Health History

Dependency Tree

License Audit

Dependencies (7)

deepmerge escape-string-regexp htmlparser2 is-plain-object parse-srcset postcss launder

API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/npm/sanitize-html