Displaying 1 to 20 from 62 results

xss-filters - Secure XSS Filters


In this example, the traditional wisdom of blindly escaping some special html entity characters (& < > ' " `) would not stop XSS (e.g., when url is equal to javascript:alert(1) or onclick=alert(1)).Figure 1. "Just sufficient" encoding based on the HTML5 spec.

query-string - Parse and stringify URL query strings


🔥 Want to strengthen your core JavaScript skills and master ES6? I would personally recommend this awesome ES6 course by Wes Bos. You might also like his React course.Parse a query string into an object. Leading ? or # are ignored, so you can pass location.search or location.hash directly.

string.js - Extra JavaScript string methods.


string.js, or simply S is a lightweight (< 5 kb minified and gzipped) JavaScript library for the browser or for Node.js that provides extra String methods. Originally, it modified the String prototype. But I quickly learned that in JavaScript, this is considered poor practice.Personally, I prefer the cleanliness of the way code looks when it appears to be native methods. i.e. when you modify native JavaScript prototypes. However, if any app dependency required string.js, then the app's string prototype would be modified in every module. This could be troublesome. So I settled on creating a wrapper a la jQuery style. For those of you prototype hatin' fools, there is the method extendPrototype().

protocol-buffers - Protocol Buffers for Node.js


See the Google Protocol Buffers docs for more information about the available types etc.Since v4 you can now compile your schemas to a JavaScript file you can require from Node. This means you do not have runtime parse the schemas, which is useful if using in the browser or on embedded devices. It also makes the dependency footprint a lot smaller.




qrious - Pure JavaScript library for QR code generation using canvas


QRious is a pure JavaScript library for generating QR codes using HTML5 canvas. Check out node-qrious if you want to install it for use within Node.js.

node-lame - Node.js native bindings to libmp3lame & libmpg123


For all your async streaming MP3 encoding/decoding needs, there's node-lame! This module hooks into libmp3lame, the library that the lame command uses, to provide Encoder and Decoder streams to NodeJS.node-lame comes bundled with its own copy of libmp3lame and libmpg123, so there's no need to have them installed on your system.


base-x - Encode/decode any base


Fast base encoding / decoding of any given alphabet using bitcoin style leading zero compression.See below for a list of commonly recognized alphabets, and their respective base.

bs58 - Base58 encoding/decoding for Bitcoin


JavaScript component to compute base 58 encoding. This encoding is typically used for crypto currencies such as Bitcoin.Note: If you're looking for base 58 check encoding, see: https://github.com/bitcoinjs/bs58check, which depends upon this library.

qr-encode - JavaScript component to encode strings into QR codes.


JavaScript component to encode strings into QR codes. Works in both Node.js and the browser.

secure-handlebars - Handlebars Context Pre-compiler


Check out the latest slide deck, presented in the OWASP AppSec USA 2015.Imagine a template is written like so: <a href="{{url}}">{{url}}</a>. When it is compiled with an untrusted user data like {"url": "javascript:alert(666)"}, secure-handlebars automatically applies contextual escaping and generates the HTML <a href="x-javascript:alert(666)">javascript:alert(666)</a> as a result.

base64-emoji - Like base64 but encoding into emojis ⭐✊☕


Inspired by base-emoji this module allows for transformation of any binary data to and from emoji using only 64 different emojicons (+1 for padding).The encode function takes a buffer or a string and returns a buffer containing the encoded bytes. The optional 2nd buffer argument will be used to store the encoded result. If not provided a new buffer will be allocated. If an offset is passed as the 3rd argument the input will be encoded into the buffer at that byte offset. The offset defauls to 0.

dns-txt - Encode/decode DNS-SD TXT record RDATA fields


Encode or decode the RDATA field in multicast DNS TXT records. For use with DNS-Based Service Discovery. For details see RFC 6763.The encoder and decoder conforms to RFC 6763.