Ecosyste.ms: Packages
An open API service providing package, version and dependency metadata of many open source software ecosystems and registries.
npmjs.org "security" keyword
Top 1.3% on npmjs.org
11 versions - Latest release: about 4 years ago - 4,055 dependent packages - 1,261,649 dependent repositories - 479 million downloads last month - 341 stars on GitHub - 2 maintainers
safe-buffer 5.2.1 💰
Safer Node.js Buffer API11 versions - Latest release: about 4 years ago - 4,055 dependent packages - 1,261,649 dependent repositories - 479 million downloads last month - 341 stars on GitHub - 2 maintainers
Top 1.8% on npmjs.org
39 versions - Latest release: 18 days ago - 838 dependent packages - 951,034 dependent repositories - 118 million downloads last month - 55 stars on GitHub - 4 maintainers
ssri 10.0.6
Standard Subresource Integrity library -- parses, serializes, generates, and verifies integrity m...39 versions - Latest release: 18 days ago - 838 dependent packages - 951,034 dependent repositories - 118 million downloads last month - 55 stars on GitHub - 4 maintainers
Top 0.3% on npmjs.org
20 versions - Latest release: 7 months ago - 11,874 dependent packages - 163,892 dependent repositories - 28.6 million downloads last month - 15,142 stars on GitHub - 1 maintainer
crypto-js 4.2.0
JavaScript library of crypto standards.20 versions - Latest release: 7 months ago - 11,874 dependent packages - 163,892 dependent repositories - 28.6 million downloads last month - 15,142 stars on GitHub - 1 maintainer
Top 0.4% on npmjs.org
116 versions - Latest release: 11 days ago - 1,705 dependent packages - 56,633 dependent repositories - 21.9 million downloads last month - 12,098 stars on GitHub - 1 maintainer
dompurify 3.1.3 💰
DOMPurify is a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. It's w...116 versions - Latest release: 11 days ago - 1,705 dependent packages - 56,633 dependent repositories - 21.9 million downloads last month - 12,098 stars on GitHub - 1 maintainer
Top 2.5% on npmjs.org
34 versions - Latest release: 6 days ago - 23 dependent packages - 44,259 dependent repositories - 19 million downloads last month - 149 stars on GitHub - 2 maintainers
sigstore 2.3.1
code-signing for npm packages34 versions - Latest release: 6 days ago - 23 dependent packages - 44,259 dependent repositories - 19 million downloads last month - 149 stars on GitHub - 2 maintainers
@sigstore/tuf 2.3.4
Client for the Sigstore TUF repository12 versions - Latest release: 6 days ago - 2 dependent packages - 30,370 dependent repositories - 18.4 million downloads last month - 149 stars on GitHub - 2 maintainers
Top 2.5% on npmjs.org
20 versions - Latest release: 16 days ago - 19 dependent packages - 87,759 dependent repositories - 18.3 million downloads last month - 65 stars on GitHub - 1 maintainer
tuf-js 2.2.1
JavaScript implementation of The Update Framework (TUF)20 versions - Latest release: 16 days ago - 19 dependent packages - 87,759 dependent repositories - 18.3 million downloads last month - 65 stars on GitHub - 1 maintainer
Top 3.8% on npmjs.org
8 versions - Latest release: 16 days ago - 2 dependent packages - 87,476 dependent repositories - 18.1 million downloads last month - 65 stars on GitHub - 2 maintainers
@tufjs/models 2.0.1
TUF metadata models8 versions - Latest release: 16 days ago - 2 dependent packages - 87,476 dependent repositories - 18.1 million downloads last month - 65 stars on GitHub - 2 maintainers
@sigstore/bundle 2.3.2
Sigstore bundle type9 versions - Latest release: 6 days ago - 2 dependent packages - 13,871 dependent repositories - 18 million downloads last month - 149 stars on GitHub - 2 maintainers
Top 1.8% on npmjs.org
12 versions - Latest release: over 1 year ago - 84 dependent packages - 21,311 dependent repositories - 17.5 million downloads last month - 201 stars on GitHub - 2 maintainers
secure-json-parse 2.7.0
JSON parse with prototype poisoning protection12 versions - Latest release: over 1 year ago - 84 dependent packages - 21,311 dependent repositories - 17.5 million downloads last month - 201 stars on GitHub - 2 maintainers
@sigstore/sign 2.3.2
Sigstore signing library10 versions - Latest release: 6 days ago - 1 dependent package - 46 dependent repositories - 17.4 million downloads last month - 149 stars on GitHub - 2 maintainers
Top 0.5% on npmjs.org
130 versions - Latest release: 7 months ago - 3,069 dependent packages - 128,887 dependent repositories - 11.8 million downloads last month - 9,900 stars on GitHub - 2 maintainers
helmet 7.1.0
help secure Express/Connect apps with various HTTP headers130 versions - Latest release: 7 months ago - 3,069 dependent packages - 128,887 dependent repositories - 11.8 million downloads last month - 9,900 stars on GitHub - 2 maintainers
Top 1.6% on npmjs.org
29 versions - Latest release: 2 months ago - 652 dependent packages - 24,921 dependent repositories - 11.3 million downloads last month - 479 stars on GitHub - 1 maintainer
@noble/hashes 1.4.0 💰
Audited & minimal 0-dependency JS implementation of SHA, RIPEMD, BLAKE, HMAC, HKDF, PBKDF & Scrypt29 versions - Latest release: 2 months ago - 652 dependent packages - 24,921 dependent repositories - 11.3 million downloads last month - 479 stars on GitHub - 1 maintainer
Top 0.6% on npmjs.org
71 versions - Latest release: 3 months ago - 899 dependent packages - 111,112 dependent repositories - 9.39 million downloads last month - 5,048 stars on GitHub - 1 maintainer
xss 1.0.15 💰
Sanitize untrusted HTML (to prevent XSS) with a configuration specified by a Whitelist71 versions - Latest release: 3 months ago - 899 dependent packages - 111,112 dependent repositories - 9.39 million downloads last month - 5,048 stars on GitHub - 1 maintainer
Top 2.5% on npmjs.org
11 versions - Latest release: over 7 years ago - 26 dependent packages - 108,546 dependent repositories - 9.37 million downloads last month - 27 stars on GitHub - 1 maintainer
cssfilter 0.0.10
Sanitize untrusted CSS with a configuration specified by a Whitelist. 根据白名单过滤CSS11 versions - Latest release: over 7 years ago - 26 dependent packages - 108,546 dependent repositories - 9.37 million downloads last month - 27 stars on GitHub - 1 maintainer
@sigstore/verify 1.2.1
Verification of Sigstore signatures6 versions - Latest release: 6 days ago - 9.2 million downloads last month - 149 stars on GitHub - 2 maintainers
@sigstore/core 1.1.0
Base library for Sigstore4 versions - Latest release: about 2 months ago - 9.08 million downloads last month - 149 stars on GitHub - 2 maintainers
Top 0.6% on npmjs.org
65 versions - Latest release: about 1 year ago - 973 dependent packages - 52,172 dependent repositories - 7.01 million downloads last month - 3,799 stars on GitHub - 3 maintainers
vm2 3.9.19 deprecated
vm2 is a sandbox that can run untrusted code with whitelisted Node's built-in modules. Securely!65 versions - Latest release: about 1 year ago - 973 dependent packages - 52,172 dependent repositories - 7.01 million downloads last month - 3,799 stars on GitHub - 3 maintainers
Top 1.8% on npmjs.org
6 versions - Latest release: over 1 year ago - 27 dependent packages - 20,300 dependent repositories - 5.8 million downloads last month - 181 stars on GitHub - 7 maintainers
@hapi/cryptiles 6.0.1
General purpose crypto utilities6 versions - Latest release: over 1 year ago - 27 dependent packages - 20,300 dependent repositories - 5.8 million downloads last month - 181 stars on GitHub - 7 maintainers
Top 0.7% on npmjs.org
104 versions - Latest release: 3 months ago - 781 dependent packages - 27,591 dependent repositories - 4.43 million downloads last month - 2,733 stars on GitHub - 2 maintainers
express-rate-limit 7.2.0 💰
Basic IP rate-limiting middleware for Express. Use to limit repeated requests to public APIs and/...104 versions - Latest release: 3 months ago - 781 dependent packages - 27,591 dependent repositories - 4.43 million downloads last month - 2,733 stars on GitHub - 2 maintainers
Top 1.6% on npmjs.org
33 versions - Latest release: over 5 years ago - 380 dependent packages - 582,872 dependent repositories - 4.34 million downloads last month - 181 stars on GitHub - 4 maintainers
cryptiles 4.1.3 deprecated
General purpose crypto utilities33 versions - Latest release: over 5 years ago - 380 dependent packages - 582,872 dependent repositories - 4.34 million downloads last month - 181 stars on GitHub - 4 maintainers
Top 0.9% on npmjs.org
13 versions - Latest release: about 1 month ago - 3,169 dependent packages - 22,568 dependent repositories - 3.99 million downloads last month - 2,121 stars on GitHub - 3 maintainers
eslint-plugin-security 3.0.0
Security rules for eslint13 versions - Latest release: about 1 month ago - 3,169 dependent packages - 22,568 dependent repositories - 3.99 million downloads last month - 2,121 stars on GitHub - 3 maintainers
Top 2.1% on npmjs.org
19 versions - Latest release: 7 months ago - 91 dependent packages - 19,744 dependent repositories - 3.02 million downloads last month - 47 stars on GitHub - 2 maintainers
hast-util-sanitize 5.0.1 💰
hast utility to sanitize nodes19 versions - Latest release: 7 months ago - 91 dependent packages - 19,744 dependent repositories - 3.02 million downloads last month - 47 stars on GitHub - 2 maintainers
Top 2.1% on npmjs.org
26 versions - Latest release: almost 1 year ago - 49 dependent packages - 93,262 dependent repositories - 2.7 million downloads last month - 33 stars on GitHub - 4 maintainers
npm-audit-report 5.0.0
Given a response from the npm security api, render it into a variety of security reports26 versions - Latest release: almost 1 year ago - 49 dependent packages - 93,262 dependent repositories - 2.7 million downloads last month - 33 stars on GitHub - 4 maintainers
Top 2.6% on npmjs.org
3 versions - Latest release: over 7 years ago - 25 dependent packages - 2,255 dependent repositories - 2.29 million downloads last month - 35 stars on GitHub - 1 maintainer
csprng 0.1.2
Secure random numbers of any size in any base3 versions - Latest release: over 7 years ago - 25 dependent packages - 2,255 dependent repositories - 2.29 million downloads last month - 35 stars on GitHub - 1 maintainer
Top 2.7% on npmjs.org
8 versions - Latest release: 27 days ago - 20 dependent packages - 57,018 dependent repositories - 2.21 million downloads last month - 29 stars on GitHub - 1 maintainer
content-security-policy-builder 2.2.0
Build Content Security Policy directives.8 versions - Latest release: 27 days ago - 20 dependent packages - 57,018 dependent repositories - 2.21 million downloads last month - 29 stars on GitHub - 1 maintainer
Top 0.5% on npmjs.org
23 versions - Latest release: over 7 years ago - 351 dependent packages - 4,939 dependent repositories - 2.13 million downloads last month - 14,706 stars on GitHub - 1 maintainer
zxcvbn 4.4.2
realistic password strength estimation23 versions - Latest release: over 7 years ago - 351 dependent packages - 4,939 dependent repositories - 2.13 million downloads last month - 14,706 stars on GitHub - 1 maintainer
Top 0.7% on npmjs.org
41 versions - Latest release: about 3 years ago - 47 dependent packages - 58,533 dependent repositories - 2.09 million downloads last month - 9,900 stars on GitHub - 1 maintainer
helmet-csp 3.4.0
Content Security Policy middleware41 versions - Latest release: about 3 years ago - 47 dependent packages - 58,533 dependent repositories - 2.09 million downloads last month - 9,900 stars on GitHub - 1 maintainer
Top 0.7% on npmjs.org
9 versions - Latest release: almost 4 years ago - 25 dependent packages - 57,328 dependent repositories - 2.07 million downloads last month - 10,006 stars on GitHub - 1 maintainer
x-xss-protection 2.0.0
Middleware to disable the X-XSS-Protection header9 versions - Latest release: almost 4 years ago - 25 dependent packages - 57,328 dependent repositories - 2.07 million downloads last month - 10,006 stars on GitHub - 1 maintainer
Top 0.6% on npmjs.org
1,952 versions - Latest release: 22 days ago - 1,913 dependent packages - 10,449 dependent repositories - 2.06 million downloads last month - 4,750 stars on GitHub - 1 maintainer
snyk 1.1291.0
snyk library and cli utility1,952 versions - Latest release: 22 days ago - 1,913 dependent packages - 10,449 dependent repositories - 2.06 million downloads last month - 4,750 stars on GitHub - 1 maintainer
Top 2.0% on npmjs.org
9 versions - Latest release: about 5 years ago - 48 dependent packages - 57,302 dependent repositories - 2.01 million downloads last month - 87 stars on GitHub - 1 maintainer
hsts 2.2.0
HTTP Strict Transport Security middleware.9 versions - Latest release: about 5 years ago - 48 dependent packages - 57,302 dependent repositories - 2.01 million downloads last month - 87 stars on GitHub - 1 maintainer
Top 3.2% on npmjs.org
10 versions - Latest release: over 2 years ago - 6 dependent packages - 56,850 dependent repositories - 1.98 million downloads last month - 31 stars on GitHub - 1 maintainer
hpkp 2.0.3
HTTP Public Key Pinning (HPKP) middleware10 versions - Latest release: over 2 years ago - 6 dependent packages - 56,850 dependent repositories - 1.98 million downloads last month - 31 stars on GitHub - 1 maintainer
Top 2.9% on npmjs.org
3 versions - Latest release: almost 5 years ago - 18 dependent packages - 57,054 dependent repositories - 1.94 million downloads last month - 38 stars on GitHub - 1 maintainer
hide-powered-by 1.1.0
Middleware to remove the X-Powered-By header3 versions - Latest release: almost 5 years ago - 18 dependent packages - 57,054 dependent repositories - 1.94 million downloads last month - 38 stars on GitHub - 1 maintainer
Top 2.0% on npmjs.org
52 versions - Latest release: 8 days ago - 130 dependent packages - 771 dependent repositories - 1.89 million downloads last month - 343 stars on GitHub - 1 maintainer
isomorphic-dompurify 2.10.0
Makes it possible to use DOMPurify on server and client in the same way.52 versions - Latest release: 8 days ago - 130 dependent packages - 771 dependent repositories - 1.89 million downloads last month - 343 stars on GitHub - 1 maintainer
Top 3.6% on npmjs.org
3 versions - Latest release: about 5 years ago - 12 dependent packages - 57,096 dependent repositories - 1.87 million downloads last month - 19 stars on GitHub - 1 maintainer
dont-sniff-mimetype 1.1.0
Middleware to prevent mimetype from being sniffed3 versions - Latest release: about 5 years ago - 12 dependent packages - 57,096 dependent repositories - 1.87 million downloads last month - 19 stars on GitHub - 1 maintainer
Top 3.2% on npmjs.org
4 versions - Latest release: about 5 years ago - 16 dependent packages - 55,971 dependent repositories - 1.86 million downloads last month - 12 stars on GitHub - 1 maintainer
referrer-policy 1.2.0
Middleware to set the Referrer-Policy HTTP header4 versions - Latest release: about 5 years ago - 16 dependent packages - 55,971 dependent repositories - 1.86 million downloads last month - 12 stars on GitHub - 1 maintainer
Top 3.1% on npmjs.org
6 versions - Latest release: over 3 years ago - 10 dependent packages - 49,534 dependent repositories - 1.79 million downloads last month - 14 stars on GitHub - 1 maintainer
feature-policy 0.6.0
Middleware to set the Feature-Policy HTTP header6 versions - Latest release: over 3 years ago - 10 dependent packages - 49,534 dependent repositories - 1.79 million downloads last month - 14 stars on GitHub - 1 maintainer
Top 0.9% on npmjs.org
163 versions - Latest release: 24 days ago - 170 dependent packages - 3,010 dependent repositories - 1.75 million downloads last month - 2,912 stars on GitHub - 1 maintainer
rate-limiter-flexible 5.0.3 💰
Node.js rate limiter by key and protection from DDoS and Brute-Force attacks in process Memory, R...163 versions - Latest release: 24 days ago - 170 dependent packages - 3,010 dependent repositories - 1.75 million downloads last month - 2,912 stars on GitHub - 1 maintainer
Top 3.8% on npmjs.org
5 versions - Latest release: over 4 years ago - 12 dependent packages - 50,230 dependent repositories - 1.74 million downloads last month - 11 stars on GitHub - 1 maintainer
helmet-crossdomain 0.5.0
Set the X-Permitted-Cross-Domain-Policies header in Express apps5 versions - Latest release: over 4 years ago - 12 dependent packages - 50,230 dependent repositories - 1.74 million downloads last month - 11 stars on GitHub - 1 maintainer
Top 2.7% on npmjs.org
4 versions - Latest release: about 2 months ago - 7 dependent packages - 411 dependent repositories - 1.69 million downloads last month - 181 stars on GitHub - 1 maintainer
super-regex 1.0.0 💰
Make a regular expression time out if it takes too long to execute4 versions - Latest release: about 2 months ago - 7 dependent packages - 411 dependent repositories - 1.69 million downloads last month - 181 stars on GitHub - 1 maintainer
Top 4.2% on npmjs.org
5 versions - Latest release: 6 months ago - 3 dependent packages - 283 dependent repositories - 1.67 million downloads last month - 122 stars on GitHub - 1 maintainer
function-timeout 1.0.1 💰
Make a synchronous function have a timeout5 versions - Latest release: 6 months ago - 3 dependent packages - 283 dependent repositories - 1.67 million downloads last month - 122 stars on GitHub - 1 maintainer
Top 0.3% on npmjs.org
84 versions - Latest release: 3 months ago - 3,207 dependent packages - 34,743 dependent repositories - 1.6 million downloads last month - 24,062 stars on GitHub - 4 maintainers
@openzeppelin/contracts 5.0.2
Secure Smart Contract library for Solidity84 versions - Latest release: 3 months ago - 3,207 dependent packages - 34,743 dependent repositories - 1.6 million downloads last month - 24,062 stars on GitHub - 4 maintainers
Top 1.5% on npmjs.org
17 versions - Latest release: over 1 year ago - 457 dependent packages - 3,653 dependent repositories - 1.16 million downloads last month - 208 stars on GitHub - 1 maintainer
eslint-plugin-no-unsanitized 4.0.2
ESLint rule to disallow unsanitized code17 versions - Latest release: over 1 year ago - 457 dependent packages - 3,653 dependent repositories - 1.16 million downloads last month - 208 stars on GitHub - 1 maintainer
Top 3.4% on npmjs.org
2 versions - Latest release: over 9 years ago - 30 dependent packages - 87,306 dependent repositories - 1.02 million downloads last month - 8 stars on GitHub - 1 maintainer
md5-o-matic 0.1.1
Fast and simple MD5 hashing utility with zero module dependencies. View MD5 Shootout results, htt...2 versions - Latest release: over 9 years ago - 30 dependent packages - 87,306 dependent repositories - 1.02 million downloads last month - 8 stars on GitHub - 1 maintainer
Top 0.6% on npmjs.org
246 versions - Latest release: 9 months ago - 959 dependent packages - 1,650 dependent repositories - 819 thousand downloads last month - 12,835 stars on GitHub - 1 maintainer
javascript-obfuscator 4.1.0 💰
JavaScript obfuscator246 versions - Latest release: 9 months ago - 959 dependent packages - 1,650 dependent repositories - 819 thousand downloads last month - 12,835 stars on GitHub - 1 maintainer
Top 1.4% on npmjs.org
34 versions - Latest release: about 1 year ago - 340 dependent packages - 4,383 dependent repositories - 792 thousand downloads last month - 639 stars on GitHub - 1 maintainer
koa-helmet 7.0.2
Security header middleware collection for koa34 versions - Latest release: about 1 year ago - 340 dependent packages - 4,383 dependent repositories - 792 thousand downloads last month - 639 stars on GitHub - 1 maintainer
Top 1.6% on npmjs.org
100 versions - Latest release: 17 days ago - 46 dependent packages - 325 dependent repositories - 671 thousand downloads last month - 834 stars on GitHub - 1 maintainer
otpauth 9.2.4 💰
One Time Password (HOTP/TOTP) library for Node.js, Deno, Bun and browsers100 versions - Latest release: 17 days ago - 46 dependent packages - 325 dependent repositories - 671 thousand downloads last month - 834 stars on GitHub - 1 maintainer
Top 0.7% on npmjs.org
10 versions - Latest release: over 3 years ago - 32 dependent packages - 50,319 dependent repositories - 662 thousand downloads last month - 10,006 stars on GitHub - 1 maintainer
frameguard 4.0.0
Middleware to set X-Frame-Options headers10 versions - Latest release: over 3 years ago - 32 dependent packages - 50,319 dependent repositories - 662 thousand downloads last month - 10,006 stars on GitHub - 1 maintainer
Top 3.9% on npmjs.org
3 versions - Latest release: over 4 years ago - 16 dependent packages - 48,822 dependent repositories - 639 thousand downloads last month - 10 stars on GitHub - 1 maintainer
dns-prefetch-control 0.3.0
Middleware to set X-DNS-Prefetch-Control header.3 versions - Latest release: over 4 years ago - 16 dependent packages - 48,822 dependent repositories - 639 thousand downloads last month - 10 stars on GitHub - 1 maintainer
Top 1.7% on npmjs.org
50 versions - Latest release: over 1 year ago - 294 dependent packages - 446 dependent repositories - 621 thousand downloads last month - 254 stars on GitHub - 2 maintainers
audit-ci 6.6.1
Audits NPM, Yarn, and PNPM projects in CI environments50 versions - Latest release: over 1 year ago - 294 dependent packages - 446 dependent repositories - 621 thousand downloads last month - 254 stars on GitHub - 2 maintainers
Top 1.9% on npmjs.org
20 versions - Latest release: about 1 year ago - 60 dependent packages - 5,999 dependent repositories - 611 thousand downloads last month - 118 stars on GitHub - 1 maintainer
koa2-ratelimit 1.1.3
IP rate-limiting middleware for Koajs 2. Use to limit repeated requests to APIs and/or endpoints ...20 versions - Latest release: about 1 year ago - 60 dependent packages - 5,999 dependent repositories - 611 thousand downloads last month - 118 stars on GitHub - 1 maintainer
Top 0.8% on npmjs.org
4 versions - Latest release: almost 4 years ago - 16 dependent packages - 48,242 dependent repositories - 602 thousand downloads last month - 9,900 stars on GitHub - 1 maintainer
ienoopen 1.1.1
Middleware to set `X-Download-Options` header for IE8 security4 versions - Latest release: almost 4 years ago - 16 dependent packages - 48,242 dependent repositories - 602 thousand downloads last month - 9,900 stars on GitHub - 1 maintainer
Top 1.0% on npmjs.org
61 versions - Latest release: 3 months ago - 853 dependent packages - 4,919 dependent repositories - 596 thousand downloads last month - 917 stars on GitHub - 4 maintainers
@openzeppelin/contracts-upgradeable 5.0.2
Secure Smart Contract library for Solidity61 versions - Latest release: 3 months ago - 853 dependent packages - 4,919 dependent repositories - 596 thousand downloads last month - 917 stars on GitHub - 4 maintainers
Top 1.5% on npmjs.org
13 versions - Latest release: 8 months ago - 92 dependent packages - 482 dependent repositories - 588 thousand downloads last month - 375 stars on GitHub - 20 maintainers
@fastify/helmet 11.1.1 💰
Important security headers for Fastify13 versions - Latest release: 8 months ago - 92 dependent packages - 482 dependent repositories - 588 thousand downloads last month - 375 stars on GitHub - 20 maintainers
Top 1.1% on npmjs.org
5 versions - Latest release: almost 4 years ago - 6 dependent packages - 47,235 dependent repositories - 554 thousand downloads last month - 9,900 stars on GitHub - 1 maintainer
expect-ct 1.0.0
Middleware to set the Expect-CT header5 versions - Latest release: almost 4 years ago - 6 dependent packages - 47,235 dependent repositories - 554 thousand downloads last month - 9,900 stars on GitHub - 1 maintainer
Top 1.6% on npmjs.org
21 versions - Latest release: 8 months ago - 48 dependent packages - 435 dependent repositories - 542 thousand downloads last month - 653 stars on GitHub - 1 maintainer
@zxcvbn-ts/core 3.0.4
Realistic password strength estimation written in typescript21 versions - Latest release: 8 months ago - 48 dependent packages - 435 dependent repositories - 542 thousand downloads last month - 653 stars on GitHub - 1 maintainer
Top 1.1% on npmjs.org
63 versions - Latest release: 6 months ago - 39 dependent packages - 900 dependent repositories - 515 thousand downloads last month - 3,356 stars on GitHub - 2 maintainers
iron-session 8.0.1 💰
Secure, stateless, and cookie-based session library for JavaScript63 versions - Latest release: 6 months ago - 39 dependent packages - 900 dependent repositories - 515 thousand downloads last month - 3,356 stars on GitHub - 2 maintainers
Top 2.2% on npmjs.org
57 versions - Latest release: 2 months ago - 18 dependent packages - 63 dependent repositories - 490 thousand downloads last month - 218 stars on GitHub - 3 maintainers
clamscan 2.2.1
Use Node JS to scan files on your server with ClamAV's clamscan/clamdscan binary or via TCP to a ...57 versions - Latest release: 2 months ago - 18 dependent packages - 63 dependent repositories - 490 thousand downloads last month - 218 stars on GitHub - 3 maintainers
Top 1.7% on npmjs.org
35 versions - Latest release: about 3 years ago - 29 dependent packages - 1,860 dependent repositories - 461 thousand downloads last month - 411 stars on GitHub - 1 maintainer
serverless-iam-roles-per-function 3.2.0
A Serverless plugin to define IAM Role statements as part of the function definition block35 versions - Latest release: about 3 years ago - 29 dependent packages - 1,860 dependent repositories - 461 thousand downloads last month - 411 stars on GitHub - 1 maintainer
Top 3.0% on npmjs.org
7 versions - Latest release: almost 9 years ago - 53 dependent packages - 12,976 dependent repositories - 440 thousand downloads last month - 32 stars on GitHub - 2 maintainers
sri-toolbox 0.2.0
Subresource Integrity tools7 versions - Latest release: almost 9 years ago - 53 dependent packages - 12,976 dependent repositories - 440 thousand downloads last month - 32 stars on GitHub - 2 maintainers
Top 4.7% on npmjs.org
2 versions - Latest release: almost 2 years ago - 3 dependent packages - 20 dependent repositories - 436 thousand downloads last month - 10 stars on GitHub - 1 maintainer
vuln-vects 1.1.0
A powerful, flexible CVSS parser, calculator and validator written for JavaScript/TypeScript.2 versions - Latest release: almost 2 years ago - 3 dependent packages - 20 dependent repositories - 436 thousand downloads last month - 10 stars on GitHub - 1 maintainer
Top 0.4% on npmjs.org
1,042 versions - Latest release: 14 days ago - 110 dependent packages - 2,962 dependent repositories - 423 thousand downloads last month - 60,451 stars on GitHub - 8 maintainers
@strapi/strapi 4.24.2 💰
An open source headless CMS solution to create and manage your own API. It provides a powerful da...1,042 versions - Latest release: 14 days ago - 110 dependent packages - 2,962 dependent repositories - 423 thousand downloads last month - 60,451 stars on GitHub - 8 maintainers
Top 1.9% on npmjs.org
11 versions - Latest release: over 2 years ago - 63 dependent packages - 5,727 dependent repositories - 422 thousand downloads last month - 205 stars on GitHub - 1 maintainer
express-mongo-sanitize 2.2.0
Sanitize your express payload to prevent MongoDB operator injection.11 versions - Latest release: over 2 years ago - 63 dependent packages - 5,727 dependent repositories - 422 thousand downloads last month - 205 stars on GitHub - 1 maintainer
Top 2.1% on npmjs.org
24 versions - Latest release: almost 8 years ago - 5,528 dependent packages - 8,768 dependent repositories - 420 thousand downloads last month - 48 stars on GitHub - 3 maintainers
ember-cli-sri 2.1.1
SRI generation for Ember CLI24 versions - Latest release: almost 8 years ago - 5,528 dependent packages - 8,768 dependent repositories - 420 thousand downloads last month - 48 stars on GitHub - 3 maintainers
Top 1.8% on npmjs.org
52 versions - Latest release: over 1 year ago - 14 dependent packages - 444 dependent repositories - 418 thousand downloads last month - 724 stars on GitHub - 14 maintainers
@github/webauthn-json 2.1.1
A wrapper for the webauthn API that adapts input/output values to plain JSON with base64url.52 versions - Latest release: over 1 year ago - 14 dependent packages - 444 dependent repositories - 418 thousand downloads last month - 724 stars on GitHub - 14 maintainers
Top 3.9% on npmjs.org
13 versions - Latest release: about 1 month ago - 3 dependent packages - 515 dependent repositories - 400 thousand downloads last month - 33 stars on GitHub - 51 maintainers
@sanity/webhook 4.0.4
Toolkit for dealing with GROQ-powered webhooks delivered by Sanity.io13 versions - Latest release: about 1 month ago - 3 dependent packages - 515 dependent repositories - 400 thousand downloads last month - 33 stars on GitHub - 51 maintainers
Top 4.2% on npmjs.org
39 versions - Latest release: over 1 year ago - 10 dependent packages - 7,926 dependent repositories - 394 thousand downloads last month - 6 stars on GitHub - 1 maintainer
kruptein 3.0.6 💰
crypto; from kruptein to hide or conceal39 versions - Latest release: over 1 year ago - 10 dependent packages - 7,926 dependent repositories - 394 thousand downloads last month - 6 stars on GitHub - 1 maintainer
Top 1.5% on npmjs.org
73 versions - Latest release: 3 months ago - 431 dependent packages - 8,673 dependent repositories - 390 thousand downloads last month - 770 stars on GitHub - 2 maintainers
lockfile-lint 4.13.2
A CLI to lint a lockfile for security policies73 versions - Latest release: 3 months ago - 431 dependent packages - 8,673 dependent repositories - 390 thousand downloads last month - 770 stars on GitHub - 2 maintainers
Top 0.7% on npmjs.org
69 versions - Latest release: 6 days ago - 31 dependent packages - 836 dependent repositories - 369 thousand downloads last month - 1 maintainer
@sap/xssec 4.0.0
XS Advanced Container Security API for node.js69 versions - Latest release: 6 days ago - 31 dependent packages - 836 dependent repositories - 369 thousand downloads last month - 1 maintainer
Top 1.1% on npmjs.org
18 versions - Latest release: over 7 years ago - 88 dependent packages - 7,333 dependent repositories - 362 thousand downloads last month - 1,072 stars on GitHub - 4 maintainers
xss-filters 1.2.7
Secure XSS Filters - Just sufficient output filtering to prevent XSS!18 versions - Latest release: over 7 years ago - 88 dependent packages - 7,333 dependent repositories - 362 thousand downloads last month - 1,072 stars on GitHub - 4 maintainers
Top 2.2% on npmjs.org
63 versions - Latest release: about 2 years ago - 73 dependent packages - 81 dependent repositories - 316 thousand downloads last month - 111 stars on GitHub - 1 maintainer
better-npm-audit 3.7.3 💰
Reshape into a better npm audit for the community and encourage more people to include security a...63 versions - Latest release: about 2 years ago - 73 dependent packages - 81 dependent repositories - 316 thousand downloads last month - 111 stars on GitHub - 1 maintainer
Top 2.4% on npmjs.org
216 versions - Latest release: 6 months ago - 141 dependent packages - 361 dependent repositories - 312 thousand downloads last month - 173 stars on GitHub - 1 maintainer
yarn-audit-fix 10.0.7
The missing `yarn audit fix`216 versions - Latest release: 6 months ago - 141 dependent packages - 361 dependent repositories - 312 thousand downloads last month - 173 stars on GitHub - 1 maintainer
Top 2.5% on npmjs.org
17 versions - Latest release: 10 days ago - 316 dependent packages - 709 dependent repositories - 301 thousand downloads last month - 122 stars on GitHub - 1 maintainer
eslint-plugin-no-secrets 1.0.2
An eslint rule that searches for potential secrets/keys in code17 versions - Latest release: 10 days ago - 316 dependent packages - 709 dependent repositories - 301 thousand downloads last month - 122 stars on GitHub - 1 maintainer
Top 1.0% on npmjs.org
22 versions - Latest release: 3 months ago - 22 dependent packages - 394 dependent repositories - 276 thousand downloads last month - 5,603 stars on GitHub - 3 maintainers
@rushstack/eslint-plugin-security 0.8.1
An ESLint plugin providing rules that identify common security vulnerabilities for browser applic...22 versions - Latest release: 3 months ago - 22 dependent packages - 394 dependent repositories - 276 thousand downloads last month - 5,603 stars on GitHub - 3 maintainers
Top 1.9% on npmjs.org
8 versions - Latest release: over 4 years ago - 139 dependent packages - 5,030 dependent repositories - 270 thousand downloads last month - 378 stars on GitHub - 1 maintainer
hpp 0.2.3
Express middleware to protect against HTTP Parameter Pollution attacks8 versions - Latest release: over 4 years ago - 139 dependent packages - 5,030 dependent repositories - 270 thousand downloads last month - 378 stars on GitHub - 1 maintainer
Top 1.5% on npmjs.org
38 versions - Latest release: 6 months ago - 164 dependent packages - 9,395 dependent repositories - 263 thousand downloads last month - 166 stars on GitHub - 5 maintainers
kerberos 2.1.0
Kerberos library for Node.js38 versions - Latest release: 6 months ago - 164 dependent packages - 9,395 dependent repositories - 263 thousand downloads last month - 166 stars on GitHub - 5 maintainers
Top 4.2% on npmjs.org
11 versions - Latest release: 7 months ago - 2 dependent packages - 417 dependent repositories - 256 thousand downloads last month - 21 stars on GitHub - 1 maintainer
request-filtering-agent 2.0.1 💰
An http(s).Agent implementation that block request Private IP address.11 versions - Latest release: 7 months ago - 2 dependent packages - 417 dependent repositories - 256 thousand downloads last month - 21 stars on GitHub - 1 maintainer
Top 3.4% on npmjs.org
3 versions - Latest release: over 6 years ago - 20 dependent packages - 258 dependent repositories - 245 thousand downloads last month - 13 stars on GitHub - 1 maintainer
sql-escape-string 1.1.0 💰
Simple SQL string escape.3 versions - Latest release: over 6 years ago - 20 dependent packages - 258 dependent repositories - 245 thousand downloads last month - 13 stars on GitHub - 1 maintainer
Top 1.5% on npmjs.org
173 versions - Latest release: 4 months ago - 19 dependent packages - 287 dependent repositories - 244 thousand downloads last month - 1,104 stars on GitHub - 2 maintainers
angular-auth-oidc-client 17.0.0
Angular Lib for OpenID Connect & OAuth2173 versions - Latest release: 4 months ago - 19 dependent packages - 287 dependent repositories - 244 thousand downloads last month - 1,104 stars on GitHub - 2 maintainers
Top 2.3% on npmjs.org
6 versions - Latest release: 11 months ago - 9 dependent packages - 228 dependent repositories - 235 thousand downloads last month - 460 stars on GitHub - 6 maintainers
@escape.tech/graphql-armor-types 0.5.0
Export GraphQL Armor types.6 versions - Latest release: 11 months ago - 9 dependent packages - 228 dependent repositories - 235 thousand downloads last month - 460 stars on GitHub - 6 maintainers
Top 0.8% on npmjs.org
126 versions - Latest release: 3 months ago - 147 dependent packages - 7,123 dependent repositories - 235 thousand downloads last month - 3,442 stars on GitHub - 2 maintainers
retire 4.4.2 💰
Retire is a tool for detecting use of vulnerable libraries126 versions - Latest release: 3 months ago - 147 dependent packages - 7,123 dependent repositories - 235 thousand downloads last month - 3,442 stars on GitHub - 2 maintainers
Top 2.9% on npmjs.org
23 versions - Latest release: 11 months ago - 3 dependent packages - 230 dependent repositories - 232 thousand downloads last month - 460 stars on GitHub - 6 maintainers
@escape.tech/graphql-armor-max-depth 2.2.0
Limit the depth allowed in a GraphQL query.23 versions - Latest release: 11 months ago - 3 dependent packages - 230 dependent repositories - 232 thousand downloads last month - 460 stars on GitHub - 6 maintainers
Top 2.9% on npmjs.org
15 versions - Latest release: 11 months ago - 3 dependent packages - 222 dependent repositories - 230 thousand downloads last month - 460 stars on GitHub - 6 maintainers
@escape.tech/graphql-armor-block-field-suggestions 2.1.0
Block graphql field suggestion.15 versions - Latest release: 11 months ago - 3 dependent packages - 222 dependent repositories - 230 thousand downloads last month - 460 stars on GitHub - 6 maintainers
Top 2.9% on npmjs.org
22 versions - Latest release: 5 months ago - 3 dependent packages - 229 dependent repositories - 220 thousand downloads last month - 460 stars on GitHub - 6 maintainers
@escape.tech/graphql-armor-max-aliases 2.3.0
Limit the number of aliases allowed in a GraphQL query.22 versions - Latest release: 5 months ago - 3 dependent packages - 229 dependent repositories - 220 thousand downloads last month - 460 stars on GitHub - 6 maintainers
Top 2.9% on npmjs.org
13 versions - Latest release: 5 months ago - 3 dependent packages - 224 dependent repositories - 216 thousand downloads last month - 460 stars on GitHub - 6 maintainers
@escape.tech/graphql-armor-max-tokens 2.3.0
Limit the number of tokens allowed in a GraphQL document.13 versions - Latest release: 5 months ago - 3 dependent packages - 224 dependent repositories - 216 thousand downloads last month - 460 stars on GitHub - 6 maintainers
Top 2.9% on npmjs.org
19 versions - Latest release: 11 months ago - 3 dependent packages - 226 dependent repositories - 216 thousand downloads last month - 460 stars on GitHub - 6 maintainers
@escape.tech/graphql-armor-max-directives 2.1.0
Limit the number of directives allowed in a GraphQL query.19 versions - Latest release: 11 months ago - 3 dependent packages - 226 dependent repositories - 216 thousand downloads last month - 460 stars on GitHub - 6 maintainers
Top 2.9% on npmjs.org
18 versions - Latest release: 11 months ago - 3 dependent packages - 222 dependent repositories - 210 thousand downloads last month - 460 stars on GitHub - 6 maintainers
@escape.tech/graphql-armor-cost-limit 2.1.0
Limit the cost of a GraphQL Query.18 versions - Latest release: 11 months ago - 3 dependent packages - 222 dependent repositories - 210 thousand downloads last month - 460 stars on GitHub - 6 maintainers
Top 2.9% on npmjs.org
42 versions - Latest release: 5 months ago - 5 dependent packages - 236 dependent repositories - 207 thousand downloads last month - 460 stars on GitHub - 6 maintainers
@escape.tech/graphql-armor 2.4.0
Dead-simple, yet highly customizable security middleware for Apollo GraphQL servers shield42 versions - Latest release: 5 months ago - 5 dependent packages - 236 dependent repositories - 207 thousand downloads last month - 460 stars on GitHub - 6 maintainers
Top 2.0% on npmjs.org
20 versions - Latest release: 7 months ago - 106 dependent packages - 1,451 dependent repositories - 201 thousand downloads last month - 249 stars on GitHub - 1 maintainer
crypto-es 2.1.0
A cryptography algorithms library compatible with ES6 and TypeScript20 versions - Latest release: 7 months ago - 106 dependent packages - 1,451 dependent repositories - 201 thousand downloads last month - 249 stars on GitHub - 1 maintainer
Top 2.2% on npmjs.org
34 versions - Latest release: 5 months ago - 28 dependent packages - 273 dependent repositories - 200 thousand downloads last month - 179 stars on GitHub - 1 maintainer
vue-dompurify-html 5.0.1 💰
Safe replacement for the v-html directive34 versions - Latest release: 5 months ago - 28 dependent packages - 273 dependent repositories - 200 thousand downloads last month - 179 stars on GitHub - 1 maintainer
Top 3.7% on npmjs.org
8 versions - Latest release: 3 months ago - 19 dependent packages - 878 dependent repositories - 199 thousand downloads last month - 11 stars on GitHub - 1 maintainer
content-security-policy-parser 0.6.0
Parse Content Security Policy directives.8 versions - Latest release: 3 months ago - 19 dependent packages - 878 dependent repositories - 199 thousand downloads last month - 11 stars on GitHub - 1 maintainer
Top 7.6% on npmjs.org
2 versions - Latest release: 6 months ago - 1 dependent package - 62 dependent repositories - 191 thousand downloads last month - 13 stars on GitHub - 1 maintainer
vite-plugin-manifest-sri 0.2.0
Subresource Integrity hashes for the Vite.js manifest.2 versions - Latest release: 6 months ago - 1 dependent package - 62 dependent repositories - 191 thousand downloads last month - 13 stars on GitHub - 1 maintainer
Top 3.5% on npmjs.org
27 versions - Latest release: 9 months ago - 9 dependent packages - 195 dependent repositories - 176 thousand downloads last month - 17 stars on GitHub - 1 maintainer
csp-header 5.2.1
Content-Security-Policy header generator27 versions - Latest release: 9 months ago - 9 dependent packages - 195 dependent repositories - 176 thousand downloads last month - 17 stars on GitHub - 1 maintainer
Top 3.7% on npmjs.org
15 versions - Latest release: 4 months ago - 12 dependent packages - 3 dependent repositories - 168 thousand downloads last month - 240 stars on GitHub - 1 maintainer
@badgateway/oauth2-client 2.3.0
OAuth2 client for browsers and Node.js. Tiny footprint, PKCE support15 versions - Latest release: 4 months ago - 12 dependent packages - 3 dependent repositories - 168 thousand downloads last month - 240 stars on GitHub - 1 maintainer
Top 1.8% on npmjs.org
6 versions - Latest release: almost 9 years ago - 43 dependent packages - 520 dependent repositories - 167 thousand downloads last month - 235 stars on GitHub - 1 maintainer
owasp-password-strength-test 1.3.0
A password-strength tester based upon the OWASP guidelines for enforcing strong passwords.6 versions - Latest release: almost 9 years ago - 43 dependent packages - 520 dependent repositories - 167 thousand downloads last month - 235 stars on GitHub - 1 maintainer
Top 1.8% on npmjs.org
16 versions - Latest release: over 1 year ago - 28 dependent packages - 261 dependent repositories - 166 thousand downloads last month - 567 stars on GitHub - 1 maintainer
react-native-encrypted-storage 4.0.3 💰
A React Native wrapper over SharedPreferences and Keychain to provide a secure alternative to Asy...16 versions - Latest release: over 1 year ago - 28 dependent packages - 261 dependent repositories - 166 thousand downloads last month - 567 stars on GitHub - 1 maintainer
Top 0.8% on npmjs.org
923 versions - Latest release: 4 months ago - 97 dependent packages - 387 dependent repositories - 164 thousand downloads last month - 4,693 stars on GitHub - 1 maintainer
@snyk/protect 1.1277.0
Snyk protect library and utility923 versions - Latest release: 4 months ago - 97 dependent packages - 387 dependent repositories - 164 thousand downloads last month - 4,693 stars on GitHub - 1 maintainer
Top 2.1% on npmjs.org
43 versions - Latest release: almost 3 years ago - 94 dependent packages - 254 dependent repositories - 157 thousand downloads last month - 117 stars on GitHub - 1 maintainer
npm-audit-resolver 2.3.1
Aids humans and automation in managing npm audit results43 versions - Latest release: almost 3 years ago - 94 dependent packages - 254 dependent repositories - 157 thousand downloads last month - 117 stars on GitHub - 1 maintainer
Top 6.0% on npmjs.org
12 versions - Latest release: almost 4 years ago - 3 dependent packages - 230 dependent repositories - 154 thousand downloads last month - 1 stars on GitHub - 1 maintainer
audit-resolve-core 1.1.8
Core modules for audit-resolve.json file and logic of its processing12 versions - Latest release: almost 4 years ago - 3 dependent packages - 230 dependent repositories - 154 thousand downloads last month - 1 stars on GitHub - 1 maintainer
Top 3.0% on npmjs.org
5 versions - Latest release: about 3 years ago - 3 dependent packages - 152 dependent repositories - 137 thousand downloads last month - 307 stars on GitHub - 1 maintainer
next-secure-headers 2.2.0
Sets secure response headers for Next.js.5 versions - Latest release: about 3 years ago - 3 dependent packages - 152 dependent repositories - 137 thousand downloads last month - 307 stars on GitHub - 1 maintainer
Related Keywords
javascript
459
nodejs
456
typescript
399
authentication
391
schibsted
380
password
354
auth
345
encryption
340
express
318
hacktoberfest
288
api
264
authorization
262
crypto
230
cryptography
227
node
219
performance
204
npm
199
middleware
191
ethereum
176
lint
176
jwt
172
solidity
165
secure
165
security-scanner
161
http
156
best-practices
155
oauth2
155
a11y
151
interoperability
150
hint
150
pwa
150
hints
149
webhint
149
pwas
149
framework
140
privacy
137
smart
135
permissions
128
rest
124
contracts
123
oauth
121
cli
117
web
116
hash
113
react
106
audit
98
generator
98
graphql
96
login
95
xss
95
koa
93
roles
93
security-tools
93
json
92
token
90
sdk
90
policy
89
aws
87
encrypt
87
orm
79
bruteforce
78
plugin
77
identity
76
acl
76
validation
76
angular
75
attack
74
decryption
74
browser
74
test
72
sandbox
72
openid
70
csp
70
oidc
67
proxy
66
server
66
decrypt
63
backend
63
restful
62
helmet
62
random
62
vulnerabilities
61
module
61
blockchain
61
mongodb
61
limit
60
brute
60
eslint
57
rate
57
mysql
56
npm-package
55
passwords
55
captcha
55
supply-chain
55
vulnerability
54
html
54
hashing
54
passphrase
53
library
53
zeppelin
53