Alternatives and similar repositories for csp-next:

Users that are interested in csp-next are comparing it to the libraries listed below

• mikewest / strict-csp-for-everyone
  This is both a terrible and wonderful idea.
  ☆11Updated 5 years ago
• mikewest / securer-contexts
  Secure Contexts, but with _more_ secureness!
  ☆20Updated 10 months ago
• annevk / orb
  Opaque Response Blocking (CORB++)
  ☆35Updated 2 years ago
• mikewest / scheming-cookies
  Cookies should take scheme into account, just like every other storage mechanism on the web.
  ☆16Updated 4 years ago
• mikewest / deprecating-document-domain
  `document.domain` intentionally weakens the only security boundary we have. Perhaps we can dump it?
  ☆16Updated last year
• WICG / origin-policy
  [On hold for now] A mechanism for origins to set their origin-wide configuration in a central location
  ☆33Updated 2 years ago
• tc39 / security
  Discussion area for security aspects of ECMAScript
  ☆64Updated 7 years ago
• WICG / document-policy
  ☆21Updated 2 years ago
• w3c / webappsec-fetch-metadata
  Fetch Metadata
  ☆74Updated last month
• w3c / webappsec-csp
  WebAppSec Content Security Policy
  ☆216Updated last month
• mikewest / cookie-incrementalism
  Incrementally better cookies.
  ☆22Updated 2 years ago
• mikewest / baseline-header
  What if developers could opt-into better default behaviors en masse, forcing them to pick and choose the legacy risks they want to enable…
  ☆19Updated 2 years ago
• mozilla / sanitizer-polyfill
  rewrite constructor arguments, call DOMPurify, profit
  ☆67Updated 5 months ago
• google / safe-html-types
  Security contract types
  ☆60Updated 2 years ago
• w3c / webappsec-uisecurity
  User Interface Security and the Visibility API
  ☆11Updated 4 years ago
• nodejs / security-advisories
  Security advisories for Node.js and the JavaScript ecosystem.
  ☆41Updated 3 years ago
• explainers-by-googlers / Partitioning-visited-links-history
  A proposal to partition :visited link history by top-level site and frame origin.
  ☆16Updated last month
• w3c / reporting
  Reporting API
  ☆79Updated last month
• WICG / signature-based-sri
  Signature-based Resource Loading Restrictions
  ☆31Updated 2 weeks ago
• shivanigithub / http-cache-partitioning
  ☆34Updated 4 years ago
• mozilla / eslint-plugin-no-unsanitized
  Custom ESLint rule to disallows unsafe innerHTML, outerHTML, insertAdjacentHTML and alike
  ☆235Updated 3 months ago
• explainers-by-googlers / standardizing-cross-site-cookie-semantics
  A proposal to standardize security semantics of cross-site cookies
  ☆17Updated last year
• w3c / network-error-logging
  Network Error Logging
  ☆82Updated last month
• WICG / origin-agent-cluster
  A proposal for allowing web applications to origin-key their agent clusters. Now archived, as this specification has been merged into the…
  ☆24Updated 4 years ago
• camillelamy / explainers
  ☆12Updated 2 years ago
• buettner / private-prefetch-proxy
  Proposal to use a CONNECT proxy to obfuscate the user IP address for privacy-enhanced prefetching.
  ☆36Updated 2 years ago
• cure53 / PastePurify
  This is a tiny Chrome Extension that protects your from Clipboard XSS Attacks
  ☆19Updated 9 years ago
• inikulin / cookie-compat
  Browsers RFC 6265 compatibility research - http://inikulin.github.io/cookie-compat.
  ☆30Updated 8 years ago
• google / webpackager
  ☆75Updated 3 months ago
• cybozu / bugbounty
  脆弱性報奨金制度に関する詳細文書を保管するレポジトリです
  ☆34Updated 2 months ago