Sanitize untrusted HTML (to prevent XSS) with a configuration specified by a Whitelist
Zero-dependency markdown subset compiler + multi-language syntax highlighter. Escapes everything, never passes raw HTML, allowlists URL schemes — built to sit on an XSS boundary.
JAKU (呪) — Autonomous Security & Quality Intelligence Agent for vibe-coded apps. XSS, SQLi, prompt injection, QA testing, and attack chain correlation in one command.
Express middleware that auto-analyses every request and reports issues: wrong HTTP method, missing fields, security threats (XSS, SQLi, path traversal), performance problems, auth errors, oversized payloads, and more.
High-performance Static Application Security Testing (SAST) library for detecting security vulnerabilities through taint analysis
Safe HTML rendering for Svelte powered by DOMPurify. SSR-ready, browser-only entry, and edge-friendly options.
Lightweight runtime security agent for AI-powered apps - detects anomalies, blocks attacks, and provides real-time protection
Angular security helpers for preventing ReDoS and other security vulnerabilities
Zero-dependency, isomorphic HTML sanitizer: a fast browser-faithful WHATWG engine (deny-by-default) plus a drop-in sanitize-html-compatible legacy engine.
A JS lib base on Vue and View-design, you can achieve some complex functions with simple code after install this lib.
Turn a writeable and readable stream into a single streams2 duplex stream.
Context-specific encoding utilities for HTML and other web output contexts.
HTML + URL sanitization for the MDX/markdown reference renderers. DOMPurify wrapper with lazy-singleton JSDOM for Node SSR; @braintree/sanitize-url for component prop URLs. Opt-in dep — headless SDK consumers omit it when they bring their own sanitizer.
Retrofit Trusted Types onto a legacy page: claim the realm's default policy so old DOM-XSS sinks get sanitized without touching the code.
A security middleware for NodeJs(express) app to Detect OWASP Top Basic and generate report in your ThreatEquation dashboard.
Trình soạn thảo văn bản giàu tính năng (Rich Text Editor) dựa trên Quill.js, tích hợp sẵn toolbar thích ứng, hỗ trợ mention, upload ảnh, validation và bảo mật XSS.
Blackhole — Rust-native security filter (XSS, CSRF, rate-limiting) for any Node.js framework
Pipe đánh dấu giá trị là an toàn (trusted) để bypass cơ chế bảo mật mặc định của Angular, tích hợp sẵn XSS Filter cho nội dung HTML động.
Angular pipe escape các ký tự HTML đặc biệt, ngăn chặn XSS khi hiển thị nội dung không tin cậy.
Comprehensive security sanitization library for Model Context Protocol (MCP) servers with trusted security libraries
Shared XS product shell — global header, account menu, and app launcher.
Markdown and HTML renderer for Svelte 5 — built for rendering streaming AI agent output from Claude Code, ChatGPT, and agentic workflows. XSS-safe defaults, streaming-aware sanitization, token caching, TypeScript types, and Svelte 5 runes.