google / safe-html-types
Security contract types
☆60Updated 2 years ago
Alternatives and similar repositories for safe-html-types:
Users that are interested in safe-html-types are comparing it to the libraries listed below
- A Modest Content Security Proposal☆40Updated 3 years ago
- This is both a terrible and wonderful idea.☆11Updated 5 years ago
- Externalize Java application access to protected resources as log messages.☆41Updated 11 months ago
- Secure Contexts, but with _more_ secureness!☆20Updated 11 months ago
- Cookies should take scheme into account, just like every other storage mechanism on the web.☆16Updated 5 years ago
- A tool for detecting regular expression denial-of-service vulnerabilities in Android apps.☆34Updated 8 years ago
- WebAppSec Subresource Integrity☆72Updated this week
- WebAppSec Content Security Policy☆217Updated 3 weeks ago
- A fuzzing library in JavaScript. ✨☆118Updated 6 months ago
- Identify vulnerable libraries in Maven dependencies☆46Updated 2 years ago
- Static Program Analysis for Reliable Trusted Apps☆23Updated 6 years ago
- Serial Whitelist Application Trainer☆29Updated 5 years ago
- Fetch Metadata☆74Updated 3 weeks ago
- Security Crawl Maze is a comprehensive testbed for web security crawlers. It contains pages representing many ways in which one can link …☆161Updated last year
- Java Agent which mitigates deserialisation attacks by making certain classes unserializable☆188Updated 8 years ago
- OWASP Foundation Web Respository☆13Updated 8 months ago
- DEPRECATED - web security checklist for Firefox Services☆74Updated 4 years ago
- CVE database store☆132Updated 4 years ago
- A project to run fuzzing jobs at scale with Kubernetes.☆147Updated 4 years ago
- Evaluation Framework for Dependency Analysis (EFDA)☆43Updated 2 years ago
- A Java client of the Roughtime secure time sync protocol☆26Updated 5 years ago
- Custom ESLint rule to disallows unsafe innerHTML, outerHTML, insertAdjacentHTML and alike☆236Updated 5 months ago
- Go static analysis tool that checks for security issues using an AST.☆28Updated 6 years ago
- Vulnerabilities discovered in npm packages [Berkeley PL & Security Research]☆43Updated 10 months ago
- A tiny Java agent that blocks attacks against unsafe deserialization☆83Updated 7 years ago
- Cure53 Browser Security White Paper☆294Updated 7 years ago
- Deprecated: Please visit https://github.com/github/codeql instead.☆81Updated 3 years ago
- Primitive tool for exploring/querying Java classes via the Tinkerpop Gremlin graph traversal language☆106Updated 8 years ago
- A static analysis API for finding deserialization attack gadgets☆38Updated 2 years ago
- Declarative syntax for defining sets of URLs. No need for error-prone regexs.☆20Updated 5 years ago