XSS Sanitizer

DOMPurify is a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. It's written in JavaScript and works in all modern browsers (Safari, Opera (15+), Internet Explorer (10+), Firefox and Chrome - as well as almost anything else usin

Escape a string for use in HTML or the inverse

Sanitize untrusted HTML (to prevent XSS) with a configuration specified by a Whitelist

Sanitize untrusted CSS with a configuration specified by a Whitelist. 根据白名单过滤CSS

Express middleware for the validator module.

Makes it possible to use DOMPurify on server and client in the same way.

hast utility to sanitize nodes

rehype plugin to sanitize HTML

Secure XSS Filters - Just sufficient output filtering to prevent XSS!

Express 4.x middleware which sanitizes user input data (in req.body, req.query, req.headers and req.params) to prevent Cross Site Scripting (XSS) attack.

Middleware to sanitize user input

Express middleware for the sanitizer module.

💎 Isomorphic html sanitizer by DOMPurify + sanitize-html

💎 Safe html expansion for Svelte with universal-sanitize

Express middleware for the sanitizer module using Caja's HTML Sanitizer.

a complete package to control user input data to prevent Cross Site Scripting (XSS) ,Sql injection and no Sql injection attack

An express middleware inspired from express-sanitizer but additionally sanitizes URL params. It also gives an option to provide a preprocessor function to decide whether a (key, value) pair should be sanitized or not.

a small script to remove script tags from SVGs

Markdown to HTML using marked and DOMPurify. Safe by default.

Various sanitizer, escaper, encoder, and utilities to prevent XSS

This module Sanitizes HTML input, stripping all tags and attributes that aren't whitelisted.HTML sanitization can be used to protect against cross-site scripting (XSS) attacks by sanitizing any HTML code submitted by a user.

Class-based sanitization in TypeScript using decorators

Express middleware for the sanitizer module using Caja's HTML Sanitizer and HTML escape using htmlencode.

Mongoose Sanitizer Plugin

💎 Use DOMPurify for some context by conditional exports

automatic sanitization of req body fields, params and query. uses caja. automatically does sanitization and escaping as middleware.

This package helps to filter the input text that is malicious and intended to attack the server.

Lightweight plugin for sanitize your html

💎 Safe html expansion for Svelte with DOMPurify

Escape a string for use in HTML or the inverse

Use dedicated classes to authorize and validate requests

react-sanitizer-parser

Koa middleware for the validator module.

An Ember addon that wraps DOMPurify.

Vue.js plugin for sanitizing and escaping user input to protect against XSS, SQL injection, and other security vulnerabilities.

Escapes content for prevention of XSS (Cross Site Scripting) attacks.

A powerful middleware for securing your express.js applications against cross-site scripting (XSS) attacks

一个开箱即用的Vue.js插件，可通过简单的方式防止XSS攻击

vet URIs in web and web-like applications with confidence

A Nuxt 3 module that integrates DOMPurify for sanitizing HTML content and protecting against XSS attacks, with support for multiple profiles.

simple node middleware to sanitize req.body object

Koa middleware for the validator module. Support v1 and v2.

Ember addon to help purify DOM content

Recursive function that'll sanitize a string or ALL strings in a json input.

Scrubs xss content in a JavaScript object

DOMPurifyPlusPlus is a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG.


Express middleware for the sanitizer module using Caja's HTML Sanitizer and HTML escape using htmlencode. Forked from express-sanitize-escape as the original package is no longer maintained

Koa middleware which sanitizes user input data (in req.body, req.query, req.headers and req.params) to prevent Cross Site Scripting (XSS) attack.

Mongoose Sanitizer Plugin