Alternatives and similar repositories for csp-next

Users that are interested in csp-next are comparing it to the libraries listed below

• w3c / webappsec-csp
  WebAppSec Content Security Policy
  ☆221Updated 2 months ago
• mikewest / strict-csp-for-everyone
  This is both a terrible and wonderful idea.
  ☆12Updated 6 years ago
• mikewest / securer-contexts
  Secure Contexts, but with _more_ secureness!
  ☆20Updated last year
• tc39 / security
  Discussion area for security aspects of ECMAScript
  ☆64Updated 8 years ago
• annevk / orb
  Opaque Response Blocking (CORB++)
  ☆36Updated 3 years ago
• mozilla / eslint-plugin-no-unsanitized
  Custom ESLint rule to disallows unsafe innerHTML, outerHTML, insertAdjacentHTML and alike
  ☆239Updated 4 months ago
• WICG / origin-policy
  [On hold for now] A mechanism for origins to set their origin-wide configuration in a central location
  ☆33Updated 3 years ago
• mikewest / scheming-cookies
  Cookies should take scheme into account, just like every other storage mechanism on the web.
  ☆16Updated 5 years ago
• mikewest / baseline-header
  What if developers could opt-into better default behaviors en masse, forcing them to pick and choose the legacy risks they want to enable…
  ☆19Updated 3 years ago
• tc39 / proposal-symbol-proto
  TC39 proposal for mitigating prototype pollution
  ☆52Updated 2 years ago
• google / safe-html-types
  Security contract types
  ☆60Updated 3 years ago
• camillelamy / explainers
  ☆11Updated 3 years ago
• WICG / sanitizer-api
  ☆261Updated 2 months ago
• w3c / network-error-logging
  Network Error Logging
  ☆90Updated this week
• mikewest / http-state-tokens
  Incrementally better HTTP state management.
  ☆300Updated 3 years ago
• google / webpackager
  ☆76Updated last year
• shapesecurity / salvation
  Parse Content Security Policy headers, warn about policy errors, safely manipulate, render, and optimise policies
  ☆72Updated 2 months ago
• WICG / document-policy
  ☆23Updated 3 years ago
• chromium / trickuri
  ☆144Updated 3 years ago
• mikewest / deprecating-document-domain
  `document.domain` intentionally weakens the only security boundary we have. Perhaps we can dump it?
  ☆17Updated 2 years ago
• nodejs / security-advisories
  Security advisories for Node.js and the JavaScript ecosystem.
  ☆40Updated 4 years ago
• WICG / origin-agent-cluster
  A proposal for allowing web applications to origin-key their agent clusters. Now archived, as this specification has been merged into the…
  ☆24Updated 5 years ago
• google / strict-csp
  ☆49Updated 4 months ago
• HTTPWorkshop / workshop2017
  Working area for the 2017 HTTP Workshop
  ☆23Updated 4 years ago
• cure53 / PastePurify
  This is a tiny Chrome Extension that protects your from Clipboard XSS Attacks
  ☆19Updated 10 years ago
• mikewest / cookie-incrementalism
  Incrementally better cookies.
  ☆22Updated 3 years ago
• WICG / signature-based-sri
  Signature-based Resource Loading Restrictions
  ☆44Updated 5 months ago
• mozfreddyb / eslint-plugin-scanjs-rules
  rules for scanjs functionality
  ☆28Updated 4 years ago
• whatwg / cookiestore
  Asynchronous access to cookies from JavaScript
  ☆163Updated 2 weeks ago
• zcorpan / html-parser-book
  Idiosyncracies of the HTML parser
  ☆41Updated last year