Skip to content

Latest commit

 

History

History
29 lines (17 loc) · 946 Bytes

no-danger.md

File metadata and controls

29 lines (17 loc) · 946 Bytes

Disallow usage of dangerous JSX properties (react/no-danger)

💼 This rule is enabled in the following configs: all.

Dangerous properties in React are those whose behavior is known to be a common source of application vulnerabilities. The properties names clearly indicate they are dangerous and should be avoided unless great care is taken.

See https://facebook.github.io/react/tips/dangerously-set-inner-html.html

Rule Details

Examples of incorrect code for this rule:

var React = require('react');

var Hello = <div dangerouslySetInnerHTML={{ __html: "Hello World" }}></div>;

Examples of correct code for this rule:

var React = require('react');

var Hello = <div>Hello World</div>;

When Not To Use It

If you are certain the content passed to dangerouslySetInnerHTML is sanitized HTML you can disable this rule.