Alternatives and similar repositories for csp-next

Users that are interested in csp-next are comparing it to the libraries listed below

• mikewest / strict-csp-for-everyone
  This is both a terrible and wonderful idea.
  ☆12Updated 6 years ago
• w3c / webappsec-csp
  WebAppSec Content Security Policy
  ☆221Updated 2 weeks ago
• mikewest / securer-contexts
  Secure Contexts, but with _more_ secureness!
  ☆20Updated last year
• mozilla / eslint-plugin-no-unsanitized
  Custom ESLint rule to disallows unsafe innerHTML, outerHTML, insertAdjacentHTML and alike
  ☆236Updated 2 months ago
• w3c / webappsec-fetch-metadata
  Fetch Metadata
  ☆75Updated 7 months ago
• annevk / orb
  Opaque Response Blocking (CORB++)
  ☆36Updated 3 years ago
• tc39 / security
  Discussion area for security aspects of ECMAScript
  ☆64Updated 7 years ago
• mikewest / scheming-cookies
  Cookies should take scheme into account, just like every other storage mechanism on the web.
  ☆16Updated 5 years ago
• w3c / trusted-types
  A browser API to prevent DOM-Based Cross Site Scripting in modern web applications.
  ☆637Updated 2 weeks ago
• WICG / sanitizer-api
  ☆253Updated last week
• WICG / origin-policy
  [On hold for now] A mechanism for origins to set their origin-wide configuration in a central location
  ☆33Updated 3 years ago
• camillelamy / explainers
  ☆11Updated 3 years ago
• google / csp-evaluator
  ☆372Updated 9 months ago
• mikewest / deprecating-document-domain
  `document.domain` intentionally weakens the only security boundary we have. Perhaps we can dump it?
  ☆17Updated 2 years ago
• mikewest / http-state-tokens
  Incrementally better HTTP state management.
  ☆301Updated 3 years ago
• WICG / document-policy
  ☆23Updated 3 years ago
• google / safe-html-types
  Security contract types
  ☆60Updated 3 years ago
• pmeenan / http2priorities
  Test Page for HTTP/2 prioritization (server and browser)
  ☆109Updated 5 years ago
• w3c / webappsec-post-spectre-webdev
  Post-Spectre Web Development
  ☆18Updated 2 years ago
• shapesecurity / salvation
  Parse Content Security Policy headers, warn about policy errors, safely manipulate, render, and optimise policies
  ☆72Updated last year
• w3c / network-error-logging
  Network Error Logging
  ☆89Updated 6 months ago
• WICG / client-hints-infrastructure
  Specification for the Client Hints infrastructure - privacy preserving proactive content negotiation
  ☆62Updated last year
• google / webpackager
  ☆75Updated 11 months ago
• google / strict-csp
  ☆48Updated 2 months ago
• google / security-crawl-maze
  Security Crawl Maze is a comprehensive testbed for web security crawlers. It contains pages representing many ways in which one can link …
  ☆163Updated last year
• sbingler / schemeful-same-site
  Explainer for Schemeful Same-Site
  ☆15Updated 5 years ago
• privacycg / meetings
  Agenda and minutes of meetings of the Privacy Community Group
  ☆102Updated 2 months ago
• mozilla / sanitizer-polyfill
  rewrite constructor arguments, call DOMPurify, profit
  ☆71Updated last year
• cure53 / PastePurify
  This is a tiny Chrome Extension that protects your from Clipboard XSS Attacks
  ☆19Updated 10 years ago
• w3c / webappsec
  Web Application Security Working Group repo
  ☆645Updated this week