form-sanitize 1.0.0

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 tnikhil-24
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,72 @@
+# form-sanitize
+
+![CI](https://github.com/tnikhil-24/form-sanitize/actions/workflows/ci.yml/badge.svg)
+![npm](https://img.shields.io/npm/v/form-sanitize)
+![npm downloads](https://img.shields.io/npm/dm/form-sanitize)
+![license](https://img.shields.io/npm/l/form-sanitize)
+
+Schema-based form sanitization that works on your **React frontend and Express backend** — define rules once, run everywhere.
+
+## Why form-sanitize?
+
+| | DOMPurify | validator.js | form-sanitize |
+|---|---|---|---|
+| Works in Node.js | ❌ | ✅ | ✅ |
+| Schema-based | ❌ | ❌ | ✅ |
+| Chainable API | ❌ | ❌ | ✅ |
+| Nested objects | ❌ | ❌ | ✅ |
+| Zero dependencies | ✅ | ✅ | ✅ |
+
+## Install
+
+```bash
+npm install form-sanitize
+```
+
+## Quick start
+
+```ts
+import { createSchema, s } from 'form-sanitize'
+
+const contactForm = createSchema({
+  name:    s.string().trim().stripTags(),
+  email:   s.string().trim().normalizeEmail(),
+  age:     s.number().clamp(0, 120),
+  active:  s.boolean(),
+  address: s.object({
+    city: s.string().trim(),
+    zip:  s.string().truncate(10),
+  }),
+})
+
+const clean = contactForm.sanitize(req.body)
+```
+
+## API
+
+### `s.string()`
+| Method | Description |
+|---|---|
+| `.trim()` | Remove leading/trailing whitespace |
+| `.stripTags()` | Remove HTML and script tags including content |
+| `.truncate(n)` | Limit to n characters |
+| `.normalizeEmail()` | Lowercase, remove Gmail dots and aliases |
+| `.escape()` | HTML-encode special characters |
+| `.toSlug()` | Convert to URL-safe slug |
+
+### `s.number()`
+| Method | Description |
+|---|---|
+| `.clamp(min, max)` | Keep value within range |
+| `.round(decimals)` | Round to decimal places |
+| `.abs()` | Make value positive |
+
+### `s.boolean()`
+Coerces `"true"`, `"yes"`, `"1"`, `1` → `true` and `"false"`, `"no"`, `"0"`, `0` → `false`.
+
+### `s.object(definition)`
+Sanitize nested objects recursively.
+
+## License
+
+MIT

package/dist/index.d.mts

@@ -0,0 +1,75 @@
+declare class StringSanitizer {
+    private val;
+    constructor(value: unknown);
+    trim(): this;
+    stripTags(): this;
+    truncate(length: number): this;
+    normalizeEmail(): this;
+    escape(): this;
+    toSlug(): this;
+    value(): string;
+}
+
+declare class NumberSanitizer {
+    private val;
+    constructor(value: unknown);
+    clamp(min: number, max: number): this;
+    round(decimals?: number): this;
+    abs(): this;
+    value(): number;
+}
+
+declare class BooleanSanitizer {
+    private val;
+    constructor(value: unknown);
+    value(): boolean;
+}
+
+declare class StringField {
+    private rules;
+    trim(): this;
+    stripTags(): this;
+    truncate(length: number): this;
+    normalizeEmail(): this;
+    escape(): this;
+    toSlug(): this;
+    sanitize(value: unknown): string;
+}
+
+declare class NumberField {
+    private rules;
+    clamp(min: number, max: number): this;
+    round(decimals?: number): this;
+    abs(): this;
+    sanitize(value: unknown): number;
+}
+
+declare class BooleanField {
+    sanitize(value: unknown): boolean;
+}
+
+type FieldType$1 = StringField | NumberField | BooleanField | ObjectField;
+type ObjectSchemaDefinition = Record<string, FieldType$1>;
+declare class ObjectField {
+    private definition;
+    constructor(definition: ObjectSchemaDefinition);
+    sanitize(value: unknown): Record<string, unknown>;
+}
+
+type FieldType = StringField | NumberField | BooleanField | ObjectField;
+type SchemaDefinition = Record<string, FieldType>;
+type InferOutput<T extends SchemaDefinition> = {
+    [K in keyof T]: T[K] extends StringField ? string : T[K] extends NumberField ? number : T[K] extends BooleanField ? boolean : T[K] extends ObjectField ? Record<string, unknown> : never;
+};
+declare function createSchema<T extends SchemaDefinition>(definition: T): {
+    sanitize(data: Record<string, unknown>): InferOutput<T>;
+};
+
+declare const s: {
+    string: (value?: unknown) => StringField | StringSanitizer;
+    number: (value?: unknown) => NumberField | NumberSanitizer;
+    boolean: (value?: unknown) => BooleanField | BooleanSanitizer;
+    object: (definition: ObjectSchemaDefinition) => ObjectField;
+};
+
+export { BooleanField, BooleanSanitizer, NumberField, NumberSanitizer, ObjectField, StringField, StringSanitizer, createSchema, s };

package/dist/index.d.ts

@@ -0,0 +1,75 @@
+declare class StringSanitizer {
+    private val;
+    constructor(value: unknown);
+    trim(): this;
+    stripTags(): this;
+    truncate(length: number): this;
+    normalizeEmail(): this;
+    escape(): this;
+    toSlug(): this;
+    value(): string;
+}
+
+declare class NumberSanitizer {
+    private val;
+    constructor(value: unknown);
+    clamp(min: number, max: number): this;
+    round(decimals?: number): this;
+    abs(): this;
+    value(): number;
+}
+
+declare class BooleanSanitizer {
+    private val;
+    constructor(value: unknown);
+    value(): boolean;
+}
+
+declare class StringField {
+    private rules;
+    trim(): this;
+    stripTags(): this;
+    truncate(length: number): this;
+    normalizeEmail(): this;
+    escape(): this;
+    toSlug(): this;
+    sanitize(value: unknown): string;
+}
+
+declare class NumberField {
+    private rules;
+    clamp(min: number, max: number): this;
+    round(decimals?: number): this;
+    abs(): this;
+    sanitize(value: unknown): number;
+}
+
+declare class BooleanField {
+    sanitize(value: unknown): boolean;
+}
+
+type FieldType$1 = StringField | NumberField | BooleanField | ObjectField;
+type ObjectSchemaDefinition = Record<string, FieldType$1>;
+declare class ObjectField {
+    private definition;
+    constructor(definition: ObjectSchemaDefinition);
+    sanitize(value: unknown): Record<string, unknown>;
+}
+
+type FieldType = StringField | NumberField | BooleanField | ObjectField;
+type SchemaDefinition = Record<string, FieldType>;
+type InferOutput<T extends SchemaDefinition> = {
+    [K in keyof T]: T[K] extends StringField ? string : T[K] extends NumberField ? number : T[K] extends BooleanField ? boolean : T[K] extends ObjectField ? Record<string, unknown> : never;
+};
+declare function createSchema<T extends SchemaDefinition>(definition: T): {
+    sanitize(data: Record<string, unknown>): InferOutput<T>;
+};
+
+declare const s: {
+    string: (value?: unknown) => StringField | StringSanitizer;
+    number: (value?: unknown) => NumberField | NumberSanitizer;
+    boolean: (value?: unknown) => BooleanField | BooleanSanitizer;
+    object: (definition: ObjectSchemaDefinition) => ObjectField;
+};
+
+export { BooleanField, BooleanSanitizer, NumberField, NumberSanitizer, ObjectField, StringField, StringSanitizer, createSchema, s };

package/dist/index.js

@@ -0,0 +1,268 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/index.ts
+var index_exports = {};
+__export(index_exports, {
+  BooleanField: () => BooleanField,
+  BooleanSanitizer: () => BooleanSanitizer,
+  NumberField: () => NumberField,
+  NumberSanitizer: () => NumberSanitizer,
+  ObjectField: () => ObjectField,
+  StringField: () => StringField,
+  StringSanitizer: () => StringSanitizer,
+  createSchema: () => createSchema,
+  s: () => s
+});
+module.exports = __toCommonJS(index_exports);
+
+// src/sanitizers/StringSanitizer.ts
+var StringSanitizer = class {
+  constructor(value) {
+    this.val = value === null || value === void 0 ? "" : String(value);
+  }
+  trim() {
+    this.val = this.val.trim();
+    return this;
+  }
+  stripTags() {
+    this.val = this.val.replace(/<(script|style)[^>]*>[\s\S]*?<\/\1>/gi, "");
+    this.val = this.val.replace(/<[^>]*>/g, "");
+    return this;
+  }
+  truncate(length) {
+    this.val = this.val.slice(0, length);
+    return this;
+  }
+  normalizeEmail() {
+    let email = this.val.toLowerCase().trim();
+    const [local, domain] = email.split("@");
+    if (!domain) return this;
+    let normalLocal = local.split("+")[0];
+    if (domain === "gmail.com") {
+      normalLocal = normalLocal.replace(/\./g, "");
+    }
+    this.val = `${normalLocal}@${domain}`;
+    return this;
+  }
+  escape() {
+    this.val = this.val.replace(/&/g, "&amp;").replace(/</g, "&lt;").replace(/>/g, "&gt;").replace(/"/g, "&quot;").replace(/'/g, "&#39;");
+    return this;
+  }
+  toSlug() {
+    this.val = this.val.toLowerCase().trim().replace(/[^a-z0-9\s-]/g, "").replace(/\s+/g, "-").replace(/-+/g, "-");
+    return this;
+  }
+  value() {
+    return this.val;
+  }
+};
+
+// src/sanitizers/NumberSanitizer.ts
+var NumberSanitizer = class {
+  constructor(value) {
+    const parsed = Number(value);
+    this.val = isNaN(parsed) ? 0 : parsed;
+  }
+  clamp(min, max) {
+    this.val = Math.min(Math.max(this.val, min), max);
+    return this;
+  }
+  round(decimals = 0) {
+    const factor = Math.pow(10, decimals);
+    this.val = Math.round(this.val * factor) / factor;
+    return this;
+  }
+  abs() {
+    this.val = Math.abs(this.val);
+    return this;
+  }
+  value() {
+    return this.val;
+  }
+};
+
+// src/sanitizers/BooleanSanitizer.ts
+var TRUTHY = /* @__PURE__ */ new Set(["true", "1", "yes", "on", "y"]);
+var FALSY = /* @__PURE__ */ new Set(["false", "0", "no", "off", "n"]);
+var BooleanSanitizer = class {
+  constructor(value) {
+    if (typeof value === "boolean") {
+      this.val = value;
+    } else {
+      const str = String(value).toLowerCase().trim();
+      if (TRUTHY.has(str)) {
+        this.val = true;
+      } else if (FALSY.has(str)) {
+        this.val = false;
+      } else {
+        this.val = Boolean(value);
+      }
+    }
+  }
+  value() {
+    return this.val;
+  }
+};
+
+// src/schema/StringField.ts
+var StringField = class {
+  constructor() {
+    this.rules = [];
+  }
+  trim() {
+    this.rules.push((val) => val.trim());
+    return this;
+  }
+  stripTags() {
+    this.rules.push((val) => {
+      val = val.replace(/<(script|style)[^>]*>[\s\S]*?<\/\1>/gi, "");
+      return val.replace(/<[^>]*>/g, "");
+    });
+    return this;
+  }
+  truncate(length) {
+    this.rules.push((val) => val.slice(0, length));
+    return this;
+  }
+  normalizeEmail() {
+    this.rules.push((val) => {
+      let email = val.toLowerCase().trim();
+      const [local, domain] = email.split("@");
+      if (!domain) return email;
+      let normalLocal = local.split("+")[0];
+      if (domain === "gmail.com") {
+        normalLocal = normalLocal.replace(/\./g, "");
+      }
+      return `${normalLocal}@${domain}`;
+    });
+    return this;
+  }
+  escape() {
+    this.rules.push(
+      (val) => val.replace(/&/g, "&amp;").replace(/</g, "&lt;").replace(/>/g, "&gt;").replace(/"/g, "&quot;").replace(/'/g, "&#39;")
+    );
+    return this;
+  }
+  toSlug() {
+    this.rules.push(
+      (val) => val.toLowerCase().trim().replace(/[^a-z0-9\s-]/g, "").replace(/\s+/g, "-").replace(/-+/g, "-")
+    );
+    return this;
+  }
+  sanitize(value) {
+    let val = value === null || value === void 0 ? "" : String(value);
+    for (const rule of this.rules) {
+      val = rule(val);
+    }
+    return val;
+  }
+};
+
+// src/schema/NumberField.ts
+var NumberField = class {
+  constructor() {
+    this.rules = [];
+  }
+  clamp(min, max) {
+    this.rules.push((val) => Math.min(Math.max(val, min), max));
+    return this;
+  }
+  round(decimals = 0) {
+    this.rules.push((val) => {
+      const factor = Math.pow(10, decimals);
+      return Math.round(val * factor) / factor;
+    });
+    return this;
+  }
+  abs() {
+    this.rules.push((val) => Math.abs(val));
+    return this;
+  }
+  sanitize(value) {
+    const parsed = Number(value);
+    let val = isNaN(parsed) ? 0 : parsed;
+    for (const rule of this.rules) {
+      val = rule(val);
+    }
+    return val;
+  }
+};
+
+// src/schema/BooleanField.ts
+var TRUTHY2 = /* @__PURE__ */ new Set(["true", "1", "yes", "on", "y"]);
+var FALSY2 = /* @__PURE__ */ new Set(["false", "0", "no", "off", "n"]);
+var BooleanField = class {
+  sanitize(value) {
+    if (typeof value === "boolean") return value;
+    const str = String(value).toLowerCase().trim();
+    if (TRUTHY2.has(str)) return true;
+    if (FALSY2.has(str)) return false;
+    return Boolean(value);
+  }
+};
+
+// src/schema/ObjectField.ts
+var ObjectField = class {
+  constructor(definition) {
+    this.definition = definition;
+  }
+  sanitize(value) {
+    const data = typeof value === "object" && value !== null ? value : {};
+    const result = {};
+    for (const key in this.definition) {
+      result[key] = this.definition[key].sanitize(data[key]);
+    }
+    return result;
+  }
+};
+
+// src/schema/createSchema.ts
+function createSchema(definition) {
+  return {
+    sanitize(data) {
+      const result = {};
+      for (const key in definition) {
+        const field = definition[key];
+        result[key] = field.sanitize(data[key]);
+      }
+      return result;
+    }
+  };
+}
+
+// src/index.ts
+var s = {
+  string: (value) => value !== void 0 ? new StringSanitizer(value) : new StringField(),
+  number: (value) => value !== void 0 ? new NumberSanitizer(value) : new NumberField(),
+  boolean: (value) => value !== void 0 ? new BooleanSanitizer(value) : new BooleanField(),
+  object: (definition) => new ObjectField(definition)
+};
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  BooleanField,
+  BooleanSanitizer,
+  NumberField,
+  NumberSanitizer,
+  ObjectField,
+  StringField,
+  StringSanitizer,
+  createSchema,
+  s
+});

package/dist/index.mjs

@@ -0,0 +1,233 @@
+// src/sanitizers/StringSanitizer.ts
+var StringSanitizer = class {
+  constructor(value) {
+    this.val = value === null || value === void 0 ? "" : String(value);
+  }
+  trim() {
+    this.val = this.val.trim();
+    return this;
+  }
+  stripTags() {
+    this.val = this.val.replace(/<(script|style)[^>]*>[\s\S]*?<\/\1>/gi, "");
+    this.val = this.val.replace(/<[^>]*>/g, "");
+    return this;
+  }
+  truncate(length) {
+    this.val = this.val.slice(0, length);
+    return this;
+  }
+  normalizeEmail() {
+    let email = this.val.toLowerCase().trim();
+    const [local, domain] = email.split("@");
+    if (!domain) return this;
+    let normalLocal = local.split("+")[0];
+    if (domain === "gmail.com") {
+      normalLocal = normalLocal.replace(/\./g, "");
+    }
+    this.val = `${normalLocal}@${domain}`;
+    return this;
+  }
+  escape() {
+    this.val = this.val.replace(/&/g, "&amp;").replace(/</g, "&lt;").replace(/>/g, "&gt;").replace(/"/g, "&quot;").replace(/'/g, "&#39;");
+    return this;
+  }
+  toSlug() {
+    this.val = this.val.toLowerCase().trim().replace(/[^a-z0-9\s-]/g, "").replace(/\s+/g, "-").replace(/-+/g, "-");
+    return this;
+  }
+  value() {
+    return this.val;
+  }
+};
+
+// src/sanitizers/NumberSanitizer.ts
+var NumberSanitizer = class {
+  constructor(value) {
+    const parsed = Number(value);
+    this.val = isNaN(parsed) ? 0 : parsed;
+  }
+  clamp(min, max) {
+    this.val = Math.min(Math.max(this.val, min), max);
+    return this;
+  }
+  round(decimals = 0) {
+    const factor = Math.pow(10, decimals);
+    this.val = Math.round(this.val * factor) / factor;
+    return this;
+  }
+  abs() {
+    this.val = Math.abs(this.val);
+    return this;
+  }
+  value() {
+    return this.val;
+  }
+};
+
+// src/sanitizers/BooleanSanitizer.ts
+var TRUTHY = /* @__PURE__ */ new Set(["true", "1", "yes", "on", "y"]);
+var FALSY = /* @__PURE__ */ new Set(["false", "0", "no", "off", "n"]);
+var BooleanSanitizer = class {
+  constructor(value) {
+    if (typeof value === "boolean") {
+      this.val = value;
+    } else {
+      const str = String(value).toLowerCase().trim();
+      if (TRUTHY.has(str)) {
+        this.val = true;
+      } else if (FALSY.has(str)) {
+        this.val = false;
+      } else {
+        this.val = Boolean(value);
+      }
+    }
+  }
+  value() {
+    return this.val;
+  }
+};
+
+// src/schema/StringField.ts
+var StringField = class {
+  constructor() {
+    this.rules = [];
+  }
+  trim() {
+    this.rules.push((val) => val.trim());
+    return this;
+  }
+  stripTags() {
+    this.rules.push((val) => {
+      val = val.replace(/<(script|style)[^>]*>[\s\S]*?<\/\1>/gi, "");
+      return val.replace(/<[^>]*>/g, "");
+    });
+    return this;
+  }
+  truncate(length) {
+    this.rules.push((val) => val.slice(0, length));
+    return this;
+  }
+  normalizeEmail() {
+    this.rules.push((val) => {
+      let email = val.toLowerCase().trim();
+      const [local, domain] = email.split("@");
+      if (!domain) return email;
+      let normalLocal = local.split("+")[0];
+      if (domain === "gmail.com") {
+        normalLocal = normalLocal.replace(/\./g, "");
+      }
+      return `${normalLocal}@${domain}`;
+    });
+    return this;
+  }
+  escape() {
+    this.rules.push(
+      (val) => val.replace(/&/g, "&amp;").replace(/</g, "&lt;").replace(/>/g, "&gt;").replace(/"/g, "&quot;").replace(/'/g, "&#39;")
+    );
+    return this;
+  }
+  toSlug() {
+    this.rules.push(
+      (val) => val.toLowerCase().trim().replace(/[^a-z0-9\s-]/g, "").replace(/\s+/g, "-").replace(/-+/g, "-")
+    );
+    return this;
+  }
+  sanitize(value) {
+    let val = value === null || value === void 0 ? "" : String(value);
+    for (const rule of this.rules) {
+      val = rule(val);
+    }
+    return val;
+  }
+};
+
+// src/schema/NumberField.ts
+var NumberField = class {
+  constructor() {
+    this.rules = [];
+  }
+  clamp(min, max) {
+    this.rules.push((val) => Math.min(Math.max(val, min), max));
+    return this;
+  }
+  round(decimals = 0) {
+    this.rules.push((val) => {
+      const factor = Math.pow(10, decimals);
+      return Math.round(val * factor) / factor;
+    });
+    return this;
+  }
+  abs() {
+    this.rules.push((val) => Math.abs(val));
+    return this;
+  }
+  sanitize(value) {
+    const parsed = Number(value);
+    let val = isNaN(parsed) ? 0 : parsed;
+    for (const rule of this.rules) {
+      val = rule(val);
+    }
+    return val;
+  }
+};
+
+// src/schema/BooleanField.ts
+var TRUTHY2 = /* @__PURE__ */ new Set(["true", "1", "yes", "on", "y"]);
+var FALSY2 = /* @__PURE__ */ new Set(["false", "0", "no", "off", "n"]);
+var BooleanField = class {
+  sanitize(value) {
+    if (typeof value === "boolean") return value;
+    const str = String(value).toLowerCase().trim();
+    if (TRUTHY2.has(str)) return true;
+    if (FALSY2.has(str)) return false;
+    return Boolean(value);
+  }
+};
+
+// src/schema/ObjectField.ts
+var ObjectField = class {
+  constructor(definition) {
+    this.definition = definition;
+  }
+  sanitize(value) {
+    const data = typeof value === "object" && value !== null ? value : {};
+    const result = {};
+    for (const key in this.definition) {
+      result[key] = this.definition[key].sanitize(data[key]);
+    }
+    return result;
+  }
+};
+
+// src/schema/createSchema.ts
+function createSchema(definition) {
+  return {
+    sanitize(data) {
+      const result = {};
+      for (const key in definition) {
+        const field = definition[key];
+        result[key] = field.sanitize(data[key]);
+      }
+      return result;
+    }
+  };
+}
+
+// src/index.ts
+var s = {
+  string: (value) => value !== void 0 ? new StringSanitizer(value) : new StringField(),
+  number: (value) => value !== void 0 ? new NumberSanitizer(value) : new NumberField(),
+  boolean: (value) => value !== void 0 ? new BooleanSanitizer(value) : new BooleanField(),
+  object: (definition) => new ObjectField(definition)
+};
+export {
+  BooleanField,
+  BooleanSanitizer,
+  NumberField,
+  NumberSanitizer,
+  ObjectField,
+  StringField,
+  StringSanitizer,
+  createSchema,
+  s
+};

package/package.json

@@ -0,0 +1,50 @@
+{
+  "name": "form-sanitize",
+  "version": "1.0.0",
+  "description": "Schema-based form sanitization that works on frontend and backend",
+  "main": "./dist/index.js",
+  "module": "./dist/index.mjs",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.mjs",
+      "require": "./dist/index.js"
+    }
+  },
+  "files": [
+    "dist",
+    "README.md",
+    "LICENSE"
+  ],
+  "keywords": [
+    "form",
+    "sanitize",
+    "sanitizer",
+    "schema",
+    "xss",
+    "validation",
+    "typescript"
+  ],
+  "author": "tnikhil-24",
+  "license": "MIT",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/tnikhil-24/form-sanitize.git"
+  },
+  "homepage": "https://github.com/tnikhil-24/form-sanitize#readme",
+  "scripts": {
+    "build": "tsup",
+    "test": "vitest run",
+    "test:watch": "vitest",
+    "prepublishOnly": "npm run build && npm test"
+  },
+  "devDependencies": {
+    "@types/node": "^25.6.0",
+    "eslint": "^10.2.0",
+    "prettier": "^3.8.2",
+    "tsup": "^8.5.1",
+    "typescript": "^6.0.2",
+    "vitest": "^4.1.4"
+  }
+}