Safer Node.js Buffer API
Generate a cryptographically strong random string
Create a 'gud nuff' (not cryptographically secure) globally unique id
Sanitize untrusted HTML (to prevent XSS) with a configuration specified by a Whitelist
Sanitize untrusted CSS with a configuration specified by a Whitelist. 根据白名单过滤CSS
JSON parse with prototype poisoning protection
math-random is an isomorphic, drop-in replacement for `Math.random` that uses cryptographically secure random number generation, where available
Calculate meta-vulnerabilities from package security advisories
snyk library and cli utility
Securely compare two strings, copied from cryptiles
General purpose crypto utilities
Basic IP rate-limiting middleware for Express. Use to limit repeated requests to public APIs and/or endpoints such as password reset.
Content Security Policy middleware
Middleware to disable the X-XSS-Protection header
Middleware to prevent mimetype from being sniffed
Middleware to remove the X-Powered-By header
Middleware to set the Feature-Policy HTTP header
Set the X-Permitted-Cross-Domain-Policies header in Express apps
Given a response from the npm security api, render it into a variety of security reports
Evaluate Content Security Policies for a wide range of bypasses and weaknesses
Security rules for eslint
Encrypt/Decrypt the values of a given object
Fastest JS implementation of secp256k1. Independently audited, high-security, 0-dependency ECDSA & Schnorr signatures
Node.js rate limiter by key and protection from DDoS and Brute-Force attacks in process Memory, Redis, MongoDb, Memcached, MySQL, PostgreSQL, Cluster or PM
Makes it possible to use DOMPurify on server and client in the same way.
Secure and easy Axios integration with Nuxt.js
A tiny (230B) and fast UUID (v4) generator for Node and the browser
Security header middleware collection for koa