Alternatives and similar repositories for vuln-regex-detector

Users that are interested in vuln-regex-detector are comparing it to the libraries listed below

• w3c / trusted-types
  A browser API to prevent DOM-Based Cross Site Scripting in modern web applications.
  ☆636Updated this week
• ajinabraham / njsscan
  njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
  ☆417Updated 11 months ago
• google / csp-evaluator
  ☆370Updated 8 months ago
• mozilla / eslint-plugin-no-unsanitized
  Custom ESLint rule to disallows unsafe innerHTML, outerHTML, insertAdjacentHTML and alike
  ☆236Updated last month
• snyk / vulncost
  Find security vulnerabilities in open source npm packages while you code
  ☆210Updated 3 years ago
• sonatype-nexus-community / auditjs
  Audits an NPM package.json file to identify known vulnerabilities.
  ☆230Updated 4 months ago
• google / node-sec-roadmap
  Some thoughts on how Node.js might respond to a changing security environment
  ☆173Updated 6 years ago
• NodeSecure / js-x-ray
  JavaScript & Node.js open-source SAST scanner. A static analyser for detecting most common malicious patterns 🔬.
  ☆258Updated last week
• gkouziik / eslint-plugin-security-node
  ESLint security plugin for Node.js
  ☆105Updated last year
• w3c / webappsec-csp
  WebAppSec Content Security Policy
  ☆221Updated last week
• nodejs / security-wg
  Node.js Ecosystem Security Working Group
  ☆528Updated last month
• davisjam / safe-regex
  Detect possibly catastrophic, exponential-time regular expressions
  ☆192Updated 2 years ago
• HoLyVieR / prototype-pollution-nsec18
  Content released at NorthSec 2018 for my talk on prototype pollution
  ☆531Updated last year
• webschik / tslint-config-security
  TSLint security rules
  ☆69Updated 5 years ago
• nodejs / security-advisories
  Security advisories for Node.js and the JavaScript ecosystem.
  ☆40Updated 4 years ago
• mikesamuel / node-sec-patterns
  Security design pattern support for Node.js
  ☆24Updated 6 years ago
• ESAPI / node-esapi
  A minimal port of the old, publicly archived "owasp-esapi-js" (Enterprise Security API for JavaScript) encoder.
  ☆139Updated 3 years ago
• jagracey / RegEx-DoS
  RegEx Denial of Service (ReDos) Scanner
  ☆178Updated 8 years ago
• NodeSecure / cli
  JavaScript security CLI that allow you to deeply analyze the dependency tree of a given package or local Node.js project.
  ☆378Updated this week
• mikesamuel / attack-review-testbed
  Make it easy to probe the strengths and weaknesses of a hardened Node.js stack
  ☆19Updated 6 years ago
• lirantal / lockfile-lint
  Lint an npm or yarn lockfile to analyze and detect security issues
  ☆826Updated 6 months ago
• fastify / secure-json-parse
  JSON.parse() drop-in replacement with prototype poisoning protection
  ☆238Updated 2 weeks ago
• brannondorsey / host-validation
  Express.js middleware for "Host" and "Referer" header validation to protect against DNS rebinding attacks.
  ☆193Updated 3 years ago
• tjenkinson / redos-detector
  A CLI and library which tests helps score how vulnerable a regex pattern is to ReDoS attacks. Supported in the browser, Node and Deno.
  ☆49Updated this week
• spaceraccoon / npm-zoo
  A zoo for malicious NPM packages
  ☆20Updated 2 years ago
• papandreou / seespee
  Create a Content-Security-Policy for a website based on the statically detectable relations
  ☆77Updated 5 months ago
• spaceraccoon / npm-scan
  An extensible, heuristic-based vulnerability scanning tool for installed npm packages
  ☆50Updated 4 years ago
• JacksonGL / NPM-Vuln-PoC
  Vulnerabilities discovered in npm packages [Berkeley PL & Security Research]
  ☆42Updated last year
• UlisesGascon / check-my-headers
  Fast and simple way to check any HTTP Headers
  ☆46Updated 2 years ago
• yaakov123 / hagana
  NodeJS runtime protection for supply chain attacks
  ☆141Updated 3 years ago