@mohalla-tech/xss-safeguard
v0.1.3
Published
Safeguard for all possible XSS attacks
Downloads
18
Readme
Want to show your love?
Table of Contents
Installation
$ yarn add @mohalla-tech/xss-safeguardOR
$ npm i @mohalla-tech/xss-safeguard --saveFeatures
- URL sanitization (With express middleware for SSR) :100:
- Query Param Sanitization (Client Side) :100:
- String Sanitization :100:
- Input Sanitization :100:
Usage
Express Middleware for SSR
import express from 'express';
import { secure } from '@mohalla-tech/xss-safeguard';
const app = express();
// Default configuration
app.use(secure());
// Callback on xss attack
app.use(secure({ callback: () => {} }));
// Custom response handler when xss attack happens
app.use(
secure({
handleResponseCustom: res => {
res.redirect('/error');
},
})
);Query Param Sanitization
import { getSafeSearchParam } from '@mohalla-tech/xss-safeguard';
// URL : https://sharechat.com?language=en
const sanitizedString = getSafeSearchParam('language');
console.log(sanitizedString); // en
// URL : https://sharechat.com?language=<script>alert("Hello")</script>
const sanitizedString = getSafeSearchParam('language');
console.log(sanitizedString); // scriptalertHello/scriptString Sanitization
import { sanitizeString } from '@mohalla-tech/xss-safeguard';
const sanitizedString = sanitizeString('<script>Hello</script>');
console.log(sanitizedString);FAQ
Is it supported and tested both on web and mobile?
Yes
Contributing
To get started...
Step 1
Option 1
- 🍴 Fork this repo!
Option 2
- 👯 Clone this repo to your local machine using
https://github.com/ShareChat/xss-safeguard
- 👯 Clone this repo to your local machine using
Step 2
- HACK AWAY! 🔨🔨🔨
Step 3
- 🔃 Create a new pull request using
https://github.com/ShareChat/xss-safeguard.
Support
Reach out to one of the following:
License
