1. ';
        $sanitized = strip_tags($content, $allowedTags);

        $sanitized = preg_replace('/\son\w+\s*=\s*"[^"]*"/i', '', $sanitized) ?? $sanitized;
        $sanitized = preg_replace('/\son\w+\s*=\s*\'[^\']*\'/i', '', $sanitized) ?? $sanitized;
        $sanitized = preg_replace('/\s(href|src)\s*=\s*"\s*javascript:[^"]*"/i', ' $1="#"', $sanitized) ?? $sanitized;
        $sanitized = preg_replace('/\s(href|src)\s*=\s*\'\s*javascript:[^\']*\'/i', ' $1="#"', $sanitized) ?? $sanitized;

        $linked = preg_replace_callback(
            '/(?])(https?:\/\/[^\s<]+)/i',
            static function (array $matches): string {
                $url = $matches[1] ?? '';
                $escapedUrl = e($url);

                return '' . $escapedUrl . '';
            },
            $sanitized,
        );

        return (string) ($linked ?? $sanitized);
    }
}