feature: drop dependencies to improve runtime performance

[jantimon]

lodash is used for very trivial checks:

htlengine/src/runtime/xss_api.js

Line 285 in 56f6733

if (!_.isString(input)) {

htlengine/src/runtime/xss_api.js

Line 289 in 56f6733

if (_.isUndefined(encoded)) {

htlengine/src/runtime/xss_api.js

Line 301 in 56f6733

if (!_.isString(url)) {

htlengine/src/runtime/xss_api.js

Line 315 in 56f6733

if (_.isString(input) && input.length > 0 && CSS_TOKEN.test(input)) {

maybe we can remove lodash to reduce the amount of security warnings poping up for lodash

[jantimon]

I did some further research and saw that we could probably also remove the xss code with the https://www.npmjs.com/package/dompurify npm package

This would remove also the following sub dependencies:

• parse5 & xregexp & sanitizer & node-esapi

In sum that would save 50% of the runtime code (highlighted with blue):