w3c / webappsec-cspLinks
WebAppSec Content Security Policy
☆220Updated this week
Alternatives and similar repositories for webappsec-csp
Users that are interested in webappsec-csp are comparing it to the libraries listed below
Sorting:
- Fetch Metadata☆74Updated 2 months ago
- A Modest Content Security Proposal☆40Updated 3 years ago
- Web Application Security Working Group repo☆629Updated last month
- ☆361Updated 3 months ago
- A browser API to prevent DOM-Based Cross Site Scripting in modern web applications.☆623Updated 2 months ago
- ☆243Updated 2 weeks ago
- WebAppSec Subresource Integrity☆73Updated this week
- Storage Standard☆135Updated 2 months ago
- W3C specs and API reviews☆344Updated this week
- A proposal for a cookie attribute to partition cross-site cookies by top-level site☆152Updated last month
- Custom ESLint rule to disallows unsafe innerHTML, outerHTML, insertAdjacentHTML and alike☆238Updated 2 weeks ago
- Discussion area for security aspects of ECMAScript☆64Updated 7 years ago
- A security/privacy review questionnaire for W3C specs☆27Updated last month
- HTTP Extensions in progress☆467Updated this week
- Guidelines, principles published on https://infosec.mozilla.org☆98Updated 2 months ago
- 🔒🔍 A Go package to scan sites against requirements for Chromium-maintained HSTS preload list.☆121Updated last month
- Security Crawl Maze is a comprehensive testbed for web security crawlers. It contains pages representing many ways in which one can link …☆162Updated last year
- A proposal to standardize security semantics of cross-site cookies☆17Updated last year
- DEPRECATED - web security checklist for Firefox Services☆74Updated 4 years ago
- Parse Content Security Policy headers, warn about policy errors, safely manipulate, render, and optimise policies☆72Updated 8 months ago
- Agenda and minutes of meetings of the Privacy Community Group☆98Updated last week
- The HTTP Archive website hosted on App Engine☆347Updated last week
- Reporting API☆79Updated this week
- Security contract types☆60Updated 2 years ago
- XS-Leaks Wiki☆161Updated 4 months ago
- `document.domain` intentionally weakens the only security boundary we have. Perhaps we can dump it?☆17Updated last year
- Client-Side Storage Partitioning☆82Updated 2 years ago
- A mechanism to selectively enable and disable browser features and APIs☆404Updated 3 weeks ago
- Security advisories for Node.js and the JavaScript ecosystem.☆41Updated 4 years ago
- Signature-based Resource Loading Restrictions☆39Updated last week