XSS Sanitizer

Escape a string for use in HTML or the inverse

DOMPurify is a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. It's written in JavaScript and works in all modern browsers (Safari, Opera (15+), Internet Explorer (10+), Firefox and Chrome - as well as almost anything else usin

Sanitize untrusted HTML (to prevent XSS) with a configuration specified by a Whitelist

Sanitize untrusted CSS with a configuration specified by a Whitelist. 根据白名单过滤CSS

Express middleware for the validator module.

hast utility to sanitize nodes

Secure XSS Filters - Just sufficient output filtering to prevent XSS!

rehype plugin to sanitize HTML

middleware to sanitize user input

Express middleware for the sanitizer module.

Express 4.x middleware which sanitizes user input data (in req.body, req.query, req.headers and req.params) to prevent Cross Site Scripting (XSS) attack.

Various sanitizer, escaper, encoder, and utilities to prevent XSS

Ember addon to help purify DOM content

automatic sanitization of req body fields, params and query. uses caja. automatically does sanitization and escaping as middleware.

a small script to remove script tags from SVGs

Markdown to HTML using marked and DOMPurify. Safe by default.

Express middleware for the sanitizer module using Caja's HTML Sanitizer and HTML escape using htmlencode.

Escapes content for prevention of XSS (Cross Site Scripting) attacks.

Express middleware for the sanitizer module using Caja's HTML Sanitizer.

This package helps to filter the input text that is malicious and intended to attack the server.

Koa middleware for the validator module.

Mongoose Sanitizer Plugin

Class-based sanitization in TypeScript using decorators

**html-converter-react** is an isomorphic utility function that provides easy way to convert your string into a safely sanitized html. It's built on top of dompurify and it's made to work with react.

Node.js Connect middleware to sanitize user input coming from POST body, GET queries, and url params. Works with Express

Koa middleware for the validator module. Support v1 and v2.

Escape a string for use in HTML or the inverse

Lightweight plugin for sanitize your html

An Ember addon that wraps DOMPurify.

a complete package to control user input data to prevent Cross Site Scripting (XSS) ,Sql injection and no Sql injection attack

simple node middleware to sanitize req.body object

Express middleware for the sanitizer module using Caja's HTML Sanitizer and HTML escape using htmlencode. Forked from express-sanitize-escape as the original package is no longer maintained

An express middleware inspired from express-sanitizer but additionally sanitizes URL params. It also gives an option to provide a preprocessor function to decide whether a (key, value) pair should be sanitized or not.

Mongoose Sanitizer Plugin

vet URIs in web and web-like applications with confidence

Anti is an XSS protection module.

Express middleware that automatically sanitize user inputs

Escape a string for use in HTML or the inverse

Escape a string for use in HTML or the inverse

Escape a string for use in HTML or the inverse

A middleware to sanitize all of the request inputs to prevent SQL injections and XSS attacks

Escape a string for use in HTML or the inverse

This module Sanitizes HTML input, stripping all tags and attributes that aren't whitelisted.HTML sanitization can be used to protect against cross-site scripting (XSS) attacks by sanitizing any HTML code submitted by a user.

Simple safe text

Escape a string for use in HTML or the inverse

Sanitize untrusted HTML (to prevent XSS) with a configuration specified by a Whitelist

Escape a string for use in HTML or the inverse

Escape html and mongo special characters

**html-converter-js** is an utility function that provides easy way to convert your string into a safely sanitized html. It's built on top of dompurify.

automatic sanitization of req body fields, params and query. automatically does sanitization and escaping as middleware.