export declare function highlight(input?: string, search?: string): string | undefined; export declare function prefixHttps(url: string): string; export declare function stripHtmlTags(htmlString: string | undefined): string; export declare function sanitizeHtml(htmlString: string | undefined): string; export declare function stripHtmlTagsAndTrim(htmlString: string | undefined): string; /** * Allowlist-sanitize user-authored HTML that will be rendered as TRUSTED markup * (e.g. an `html`-typed custom user property wrapped in a Handlebars `SafeString`, * or shown via `v-html`). Uses DOMPurify with an explicit tag/attribute allowlist; * DOMPurify additionally strips every `on*` handler and blocks dangerous URL schemes * (`javascript:` etc.) on `href`. Prefer this over `sanitizeHtml` (a weak denylist) * anywhere user HTML is rendered unescaped. * * DOMPurify needs a DOM; user HTML only renders client-side. With no `window` * (Node/SSR) fall back to `stripHtmlTags` — a regex strip that needs no DOMParser, * so it never throws and never emits raw markup (fail closed to inert text). */ export declare function sanitizeUserHtml(htmlString: string | undefined): string;