wp_sanitize_script_attributes( array $attributes )

Sanitizes an attributes array into an attributes string to be placed inside a tag.

Description

Automatically injects type attribute if needed. Used by wp_get_script_tag() and wp_get_inline_script_tag().

Parameters

$attributes: (array) (Required) Key-value pairs representing <script> tag attributes.

Return

(string) String made of sanitized <script> tag attributes.

Source

File: wp-includes/script-loader.php

function wp_sanitize_script_attributes( $attributes ) {
	$html5_script_support = ! is_admin() && ! current_theme_supports( 'html5', 'script' );
	$attributes_string    = '';

	// If HTML5 script tag is supported, only the attribute name is added
	// to $attributes_string for entries with a boolean value, and that are true.
	foreach ( $attributes as $attribute_name => $attribute_value ) {
		if ( is_bool( $attribute_value ) ) {
			if ( $attribute_value ) {
				$attributes_string .= $html5_script_support ? sprintf( ' %1$s="%2$s"', esc_attr( $attribute_name ), esc_attr( $attribute_name ) ) : ' ' . esc_attr( $attribute_name );
			}
		} else {
			$attributes_string .= sprintf( ' %1$s="%2$s"', esc_attr( $attribute_name ), esc_attr( $attribute_value ) );
		}
	}

	return $attributes_string;
}

Uses

Uses	Description
wp-includes/theme.php: current_theme_supports()	Checks a theme’s support for a given feature.
wp-includes/formatting.php: esc_attr()	Escaping for HTML attributes.
wp-includes/load.php: is_admin()	Determines whether the current request is for an administrative interface page.

Used By

Used By	Description
wp-includes/script-loader.php: wp_get_inline_script_tag()	Wraps inline JavaScript in tag.
wp-includes/script-loader.php: wp_get_script_tag()	Formats loader tags.

Changelog

Version	Description
5.7.0	Introduced.

© 2003–2021 WordPress Foundation
Licensed under the GNU GPLv2+ License.
https://developer.wordpress.org/reference/functions/wp_sanitize_script_attributes