Company News
Connect with Socket at RSA and BSidesSF 2024
Come meet the Socket team at BSidesSF and RSA! We're sponsoring several fun networking events and we would love to see you there.
By Sarah Gooding - Apr 15, 2024
@mohalla-tech/xss-safeguard
Advanced tools
- Version published
- Maintainers
- 15
Weekly downloads
Readme
XSS Safeguard
Performance oriented safeguard for all possible XSS attacks
Made with ❤️ by developers for developers
Want to show your love?
Click on 🌟 button.
Table of Contents
Installation
$ yarn add @mohalla-tech/xss-safeguard
OR
$ npm i @mohalla-tech/xss-safeguard --save
Features
- URL sanitization (With express middleware for SSR) :100:
- Query Param Sanitization (Client Side) :100:
- String Sanitization :100:
- Input Sanitization :100:
Usage
Express Middleware for SSR
import express from 'express';
import { secure } from '@mohalla-tech/xss-safeguard';
const app = express();
// Default configuration
app.use(secure());
// Callback on xss attack
app.use(secure({ callback: () => {} }));
// Custom response handler when xss attack happens
app.use(
secure({
handleResponseCustom: res => {
res.redirect('/error');
},
})
);
Query Param Sanitization
import { getSafeSearchParam } from '@mohalla-tech/xss-safeguard';
// URL : https://sharechat.com?language=en
const sanitizedString = getSafeSearchParam('language');
console.log(sanitizedString); // en
// URL : https://sharechat.com?language=<script>alert("Hello")</script>
const sanitizedString = getSafeSearchParam('language');
console.log(sanitizedString); // scriptalertHello/script
String Sanitization
import { sanitizeString } from '@mohalla-tech/xss-safeguard';
const sanitizedString = sanitizeString('<script>Hello</script>');
console.log(sanitizedString);
FAQ
Is it supported and tested both on web and mobile?
Yes
Contributing
To get started...
Step 1
-
Option 1
- 🍴 Fork this repo!
-
Option 2
- 👯 Clone this repo to your local machine using
https://github.com/ShareChat/xss-safeguard
- 👯 Clone this repo to your local machine using
Step 2
- HACK AWAY! 🔨🔨🔨
Step 3
- 🔃 Create a new pull request using
https://github.com/ShareChat/xss-safeguard.
Support
Reach out to one of the following:
License
FAQs
Safeguard for all possible XSS attacks
The npm package @mohalla-tech/xss-safeguard receives a total of 0 weekly downloads. As such, @mohalla-tech/xss-safeguard popularity was classified as not popular.
We found that @mohalla-tech/xss-safeguard demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 15 open source maintainers collaborating on the project.
Last updated on 03 Jan 2023
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
OSI to Lead Discussions on Navigating the Challenges of Doing Business with Open Source
OSI is starting a conversation aimed at removing the excuse of the SaaS loophole for companies navigating licensing and the complexities of doing business with open source.
By Sarah Gooding - Apr 12, 2024
Product
Introducing Dependency Visualization: An Interactive Way to See Dependencies at a Glance
We're introducing dependency visualization for reports - get a quick impression of the state of your dependencies without getting lost in the details.
By Eli Insua - Apr 11, 2024