Native Sanitizer API
No DOMPurify at all. DOMFortify drives the browser's built-in
Element.setHTML() as the sanitizer. Needs a browser that ships the Sanitizer API.
The config
window.DOMFortifyConfig = {
SANITIZER: (s) => { const d = document.createElement('div'); d.setHTML(s); return d.innerHTML; },
};
// and drop "dompurify" from the directive: trusted-types default;