LavaMoat / LavaDomeLinks
Secure DOM trees isolation and encapsulation leveraging ShadowDOM
☆36Updated 8 months ago
Alternatives and similar repositories for LavaDome
Users that are interested in LavaDome are comparing it to the libraries listed below
Sorting:
- TC39 proposal for mitigating prototype pollution☆50Updated 2 years ago
- Use Snow to finally secure your web app's same origin realms!☆115Updated 6 months ago
- 🌍 Normalized repository URLs for every package in the npm registry. Updated daily.☆89Updated last week
- 🔤 A list of all the public package names on npm. Updated daily.☆279Updated this week
- Custom ESLint rule to disallows unsafe innerHTML, outerHTML, insertAdjacentHTML and alike☆236Updated last month
- Find XS-Leaks in the browser by diffing DOM-Graphs in two states☆16Updated 9 months ago
- List of Trusted Types bypasses☆102Updated last year
- JavaScript & Node.js open-source SAST scanner. A static analyser for detecting most common malicious patterns 🔬.☆256Updated last week
- rewrite constructor arguments, call DOMPurify, profit☆71Updated last year
- Concurrent prettier runner☆253Updated last year
- A CLI and library which tests helps score how vulnerable a regex pattern is to ReDoS attacks. Supported in the browser, Node and Deno.☆49Updated this week
- ☆141Updated last week
- ☆46Updated 2 months ago
- Collection of security best practices for package managers.☆164Updated 3 years ago
- ☆137Updated last month
- DOM Clobbering Wiki, Browser Testing, and Payload Generation☆56Updated 6 months ago
- Mitigate security concerns of Dependency Confusion supply chain security risks☆49Updated 3 months ago
- Compartmentalization of host behavior hooks for JS☆131Updated 10 months ago
- JavaScript Near Membrane Library that powers Lightning Locker Service☆125Updated 3 months ago
- Explainer for AbortSignal.any(), a new DOM API that enables combining AbortSignals☆26Updated 3 years ago
- Explainer for the PEPC feature☆52Updated last week
- Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"☆210Updated 2 years ago
- This proposal introduces a new magic comment that signals to browsers that the functions in a JavaScript file are likely to be needed by …☆49Updated 2 months ago
- HTML Universal Identifier☆66Updated 10 months ago
- CSPBypass.com, a tool designed to help ethical hackers bypass restrictive Content Security Policies (CSP) and exploit XSS (Cross-Site Scr…☆380Updated last month
- This repository is a one-stop shop for diving deep into the fascinating world of mXSS (mutations caused by browser quirks in HTML parsing…☆24Updated 8 months ago
- Beyond XSS: Explore the Web Front-end Security Universe. A series about front-end security☆161Updated last month
- Awesome MXSS ??☆54Updated last year
- ☆12Updated 8 months ago
- A tool which helps identifying client-side prototype polluting libraries☆39Updated 5 months ago