A browser API to prevent DOM-Based Cross Site Scripting in modern web applications.
☆652Feb 24, 2026Updated 3 weeks ago
Alternatives and similar repositories for trusted-types
Users that are interested in trusted-types are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- This is both a terrible and wonderful idea.☆12Oct 2, 2019Updated 6 years ago
- Fetch Metadata☆75Apr 1, 2025Updated 11 months ago
- Security contract types☆60Oct 4, 2022Updated 3 years ago
- ☆263Mar 10, 2026Updated 2 weeks ago
- Keyboard Lock☆23Mar 8, 2023Updated 3 years ago
- WebAppSec Subresource Integrity☆78Updated this week
- Cookies should take scheme into account, just like every other storage mechanism on the web.☆16Apr 18, 2020Updated 5 years ago
- A mechanism to selectively enable and disable browser features and APIs☆421Mar 13, 2026Updated last week
- ☆41Jul 16, 2025Updated 8 months ago
- WebAppSec Confinement Origin Web Labels☆11Feb 16, 2021Updated 5 years ago
- A Modest Content Security Proposal☆41Aug 31, 2021Updated 4 years ago
- WebAppSec Content Security Policy☆221Mar 11, 2026Updated last week
- Web Application Security Working Group repo☆655Mar 4, 2026Updated 2 weeks ago
- A repository for the Display Locking spec☆300Aug 10, 2022Updated 3 years ago
- ☆11May 6, 2022Updated 3 years ago
- Reporting API☆83Jan 2, 2026Updated 2 months ago
- Signature-based Resource Loading Restrictions☆44Aug 13, 2025Updated 7 months ago
- Opaque Response Blocking (CORB++)☆37Aug 24, 2022Updated 3 years ago
- Make it easy to probe the strengths and weaknesses of a hardened Node.js stack☆21May 3, 2019Updated 6 years ago
- ☆24Mar 30, 2022Updated 3 years ago
- TC39 proposal to identify tagged template string array objects☆49Oct 20, 2024Updated last year
- Explainer and spec for the Content Indexing proposal☆30Apr 13, 2021Updated 4 years ago
- Web packaging format☆1,253Mar 4, 2026Updated 2 weeks ago
- A repository for the ServiceWorker static routing API.☆27May 21, 2025Updated 10 months ago
- API to get current keyboard mapping.☆33Nov 23, 2023Updated 2 years ago
- XSS mitigation for Polymer webcomponents that uses safe html type contracts☆17May 16, 2019Updated 6 years ago
- WebAppSec Clear Site Data☆20Feb 7, 2024Updated 2 years ago
- A collection of browser-based side channel attack vectors.☆760Mar 19, 2024Updated 2 years ago
- ☆142Jan 9, 2026Updated 2 months ago
- Proposed change before TC39 for reifying module identity - Stage 1 Proposal☆24Jul 1, 2019Updated 6 years ago
- TC39 Eventual Send proposal☆46Aug 7, 2023Updated 2 years ago
- Literals could be different than non-literals.☆32Jan 7, 2018Updated 8 years ago
- DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offe…☆16,766Mar 14, 2026Updated last week
- Lifecycle API to support system initiated discarding and freezing☆155Aug 28, 2023Updated 2 years ago
- Custom ESLint rule to disallows unsafe innerHTML, outerHTML, insertAdjacentHTML and alike☆241Mar 9, 2026Updated 2 weeks ago
- Former home of import maps (now merged into HTML)☆2,726Feb 26, 2025Updated last year
- Cooperative Scheduling of Background Tasks☆50May 21, 2025Updated 10 months ago
- ☆25Mar 15, 2018Updated 8 years ago
- HTTPLeaks - All possible ways, a website can leak HTTP requests☆2,103Jan 3, 2026Updated 2 months ago