Escape a string for use in HTML or the inverse
Sanitize untrusted HTML (to prevent XSS) with a configuration specified by a Whitelist
Sanitize untrusted CSS with a configuration specified by a Whitelist. 根据白名单过滤CSS
Content Security Policy middleware
Middleware to disable the X-XSS-Protection header
Express middleware for the validator module.
Makes it possible to use DOMPurify on server and client in the same way.
rehype plugin to sanitize HTML
Secure XSS Filters - Just sufficient output filtering to prevent XSS!
Validates XSS related issues of mixing HTML and non-HTML content in variables.
Safe replacement for the v-html directive
Jam3 eslint plugin for react
TypeScript definitions for Yahoo XSS Filters
XSS filter extension for showdown
Express middleware for the sanitizer module.
Disallow jQuery functions with XSS potential.
Various XSS-hunter ESLint rules
Various sanitizer, escaper, encoder, and utilities to prevent XSS
Express 4.x middleware which sanitizes user input data (in req.body, req.query, req.headers and req.params) to prevent Cross Site Scripting (XSS) attack.
General purpose I/O module to add following http headers to keep your webpages securing them from malware attacks. This module can be used with any node http server.
🛡 Security Module for Nuxt based on OWASP Top 10 and Helmet
Vue.js 2.x and 3.x plugin to add HTML secure directives v-html-remove, v-html-escape, v-html-safe
XSS Secure
A webpack plugin that adds a hash-based strict CSP to help protect your site against XSS attacks.
Safely strip DOM tags from a HTML string to prevent XSS attacks.
Escapes content for prevention of XSS (Cross Site Scripting) attacks.
This module Sanitizes HTML input, stripping all tags and attributes that aren't whitelisted.HTML sanitization can be used to protect against cross-site scripting (XSS) attacks by sanitizing any HTML code submitted by a user.
This package helps to filter the input text that is malicious and intended to attack the server.
Express middleware for the sanitizer module using Caja's HTML Sanitizer and HTML escape using htmlencode.
automatic sanitization of req body fields, params and query. uses caja. automatically does sanitization and escaping as middleware.
Express middleware for the sanitizer module using Caja's HTML Sanitizer.
a complete package to control user input data to prevent Cross Site Scripting (XSS) ,Sql injection and no Sql injection attack
[](https://travis-ci.org/RisingStack/protect)
XSS mitigation for Polymer webcomponents that uses safe html type contracts