Uses the OWASP AntiSamy MySpace sanitization policy to allow limited HTML markup in user-submitted text.
The plugin is also sometimes called the "AntiSamy Markup Formatter" or the "Safe HTML Markup Formatter".
This plugin is bundled in the Jenkins WAR file and will generally be preinstalled.
When installed, 'Safe HTML' can be selected as Markup Formatter in "Manage Jenkins" → "Configure Global Security" → "Markup Formatter":
User-submitted text will be sanitized by removing potentially dangerous elements.
At least in 1.5, the "Safe HTML" plugin has no support for editing, overriding, or updating the HTML sanitization policy. A custom plugin must be built instead. See
See GitHub releases.