npm

xss

Sanitize untrusted HTML (to prevent XSS) with a configuration specified by a Whitelist

• sanitization
• xss
• sanitize
• sanitisation
• input
• security
• escape
• encode
• filter
• validator
• html
• injection
• whitelist

leizongmin

published 1.0.9 • 4 months agopublished 1.0.9 4 months ago

helmet

help secure Express/Connect apps with various HTTP headers

• express
• security
• headers

evanhahn

published 4.6.0 • 4 months agopublished 4.6.0 4 months ago

crypto-js

JavaScript library of crypto standards.

• security
• crypto
• Hash
• MD5
• SHA1
• SHA-1
• SHA256
• SHA-256
• RC4
• Rabbit
• AES
• DES
• PBKDF2
• HMAC
• View more

evanvosberg

published 4.1.1 • 2 months agopublished 4.1.1 2 months ago

snyk

snyk library and cli utility

• security
• vulnerabilities
• advisories
• audit
• snyk
• scan
• docker
• container
• scanning

snyk-admin

published 1.713.0 • 2 days agopublished 1.713.0 2 days ago

ssri

Standard Subresource Integrity library -- parses, serializes, generates, and verifies integrity metadata according to the SRI spec.

• w3c
• web
• security
• integrity
• checksum
• hashing
• subresource integrity
• sri
• sri hash
• sri string
• sri generator
• html

nlf

published 8.0.1 • 8 months agopublished 8.0.1 8 months ago

dompurify

DOMPurify is a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. It's written in JavaScript and works in all modern browsers (Safari, Opera (15+), Internet Explorer (10+), Firefox and Chrome - as well as almost anything else usin

• dom
• xss
• html
• svg
• mathml
• security
• secure
• sanitizer
• sanitize
• filter
• purify

cure53

published 2.3.1 • a month agopublished 2.3.1 a month ago

safe-buffer

Safer Node.js Buffer API

• buffer
• buffer allocate
• node security
• safe
• safe-buffer
• security
• uninitialized

feross

published 5.2.1 • a year agopublished 5.2.1 a year ago

express-rate-limit

Basic IP rate-limiting middleware for Express. Use to limit repeated requests to public APIs and/or endpoints such as password reset.

• express-rate-limit
• express
• rate
• limit
• ratelimit
• rate-limit
• middleware
• ip
• auth
• authorization
• security
• brute
• force
• bruteforce
• View more

nfriedly

published 5.3.0 • 3 months agopublished 5.3.0 3 months ago

secure-json-parse

JSON parse with prototype poisoning protection

• JSON
• parse
• safe
• security
• prototype
• pollution

matteo.collina

published 2.4.0 • 5 months agopublished 2.4.0 5 months ago

clamscan

Use Node JS to scan files on your server with ClamAV's clamscan/clamdscan binary or via TCP to a remote server or local UNIX Domain socket. This is especially useful for scanning uploaded files provided by un-trusted sources.

• clamav
• virus
• clamscan
• upload
• virus scanning
• clam
• clamd
• security

kylefarris

published 1.4.2 • 4 months agopublished 1.4.2 4 months ago

serverless-iam-roles-per-function

A Serverless plugin to define IAM Role statements as part of the function definition block

• aws
• lambda
• aws lambda
• serverless
• policy
• role
• iam
• custom
• permissions
• security

glicht

published 3.2.0 • 4 months agopublished 3.2.0 4 months ago

express-jwt-permissions

Express middleware for JWT permissions

• express
• middleware
• JWT
• permissions
• authorization
• token
• security

michieldemey

published 1.3.6 • a month agopublished 1.3.6 a month ago

fastify-helmet

Important security headers for Fastify

• fastify
• helmet
• security
• headers
• x-frame-options
• csp
• hsts
• clickjack

climba03003

published 5.3.2 • 2 months agopublished 5.3.2 2 months ago

csp-header

Content-Security-Policy header generator

• csp
• content-security-policy
• security
• policy

frux

published 5.0.0 • 4 months agopublished 5.0.0 4 months ago

koa-helmet

Security header middleware collection for koa

• security
• headers
• koa
• x-frame-options
• csp
• hsts

venables

published 6.1.0 • 6 months agopublished 6.1.0 6 months ago

perimeterx-node-express

PerimeterX Express.js middleware to monitor and block traffic according to PerimeterX risk score

• perimeterx
• nodejs
• express
• security
• middleware

asafpx

published 6.8.2 • 2 months agopublished 6.8.2 2 months ago

auditjs

Audit dependencies to identify known vulnerabilities and maintenance problems

• Audit
• Scan
• Vulnerability
• CPE
• CVE
• CWE
• OSSIndex
• Artie
• Nexus
• Sonatype
• SCA
• SBOM
• Security
• Advisories

ossindex

published 4.0.31 • 9 days agopublished 4.0.31 9 days ago

helmet-csp

Content Security Policy middleware

• express
• security
• content-security-policy
• csp
• xss

evanhahn

published 3.4.0 • 4 months agopublished 3.4.0 4 months ago

eslint-plugin-security

Security rules for eslint

• eslint
• security
• nodesecurity

adam_baldwin

published 1.4.0 • 4 years agopublished 1.4.0 4 years ago

string-crypto

Small and simple (yet secure) library to encrypt and decrypt strings using PBKDF2 for key derivation and AES (defaulted to 256-bit / SHA512)

• encryption
• decryption
• string
• PBKDF2
• AES
• cipheriv
• NodeJS
• crypto
• encrypt
• decrypt
• security

jeanlescure

published 2.0.2 • a month agopublished 2.0.2 a month ago