class-validator vs HTML Purifier

With SurveyJS form UI libraries, you can build and style forms in a fully-integrated drag & drop form builder, render them in your JS app, and store form submission data in any backend, inc. PHP, ASP.NET Core, and Node.js.

surveyjs.io

featured

InfluxDB - Power Real-Time Data Analytics at Scale

Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

www.influxdata.com

featured

class-validator		HTML Purifier
	Project
29	Mentions	13
10,501	Stars	2,977
0.9%	Growth	-
9.2	Activity	5.6
10 days ago	Latest Commit	14 days ago
TypeScript	Language	PHP
MIT License	License	GNU Lesser General Public License v3.0 only

The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.

class-validator

Posts with mentions or reviews of class-validator. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2024-04-07.

Popular Libraries For Building Type-safe Web Application APIs
6 projects | dev.to | 7 Apr 2024

You can learn more from the documentation here.
[DDD] Tactical Design Patterns Part 3: Presentation/Infrastructure Layer
4 projects | dev.to | 16 Jan 2024

This is the request body when creating a new task. The IsString decorator provided by class-validator rejects all types other than strings, including undefined or null. The task name value object does not consider the possibility of values other than strings.
DRY Principle in Your AWS SAM Application with Middlewares
1 project | dev.to | 28 Nov 2023

In this class, we are using the famous class-validator to decorate our request parameters. This way it is more clear how we are going to use our request object and everything.
Show HN: Graphweaver – Instant GraphQL API on Postgres, MySQL, SQLite and More
8 projects | news.ycombinator.com | 27 Aug 2023

We add validation using https://github.com/typestack/class-validator.
I will make sure we get this documented.
[Nestia] Boost up your NestJS server much faster and easier (maximum 20,000x faster)
2 projects | dev.to | 27 Apr 2023
How can I declare, integrate a JSON (or similar type that is supposed to be data sent from a server) file into my Angular app, and use it;s data to display the array of Devices within it?
2 projects | /r/Angular2 | 16 Jan 2023

Also OP can check out class-transformer + class-validator if he want to properly instantiate objects and validate them with precise and verbose output of potential format errors. OP can even go the god tier way by setting up a custom RxJS operator that does that for him easily.
NestJS GraphQL image upload into a S3 bucket
8 projects | dev.to | 26 Dec 2022

Start by installing the class-transformer and class-validator packages for dto validation (see more in the docs), sharp for image optimization, and the S3 client packages.
NestJS vs. Ditsmod: auto-validation
4 projects | dev.to | 1 Dec 2022

The description of the request body model in NestJS is similar to the description of Ditsmod models, but NestJS uses decorators provided by the utility class-validator. In NestJS, it is customary to name the request body model with the ending *Dto (this is an abbreviation of Data transfer object):
Is there any reason not to use typescript?
5 projects | /r/typescript | 16 Nov 2022

You could use Zod or Superstruct to validate the types of values, or use typestack/class-validator if it makes sense.
I found 10,000x faster TypeScript validator library
5 projects | dev.to | 1 Nov 2022

Also, title of before article was I made 1,000x faster TypeScript validator library, but today's benchmark is showing that typescript-json is maximum 6,500x times faster. It's just because I added a new library class-validator in the benchmark and it is much slower than previous zod. Of course, I've continuously tuned the performance, but it just improved the performance about 2x times only.

HTML Purifier

Posts with mentions or reviews of HTML Purifier. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2023-09-13.

XSS Attack - Why strip_tags is not enough
3 projects | dev.to | 13 Sep 2023

HTML Purifier
Is HTML purifier still being updated?
2 projects | /r/PHPhelp | 2 Feb 2023

On the homepage of http://htmlpurifier.org the last update is of december 2021. I didn’t think of checking GitHub. Thanks for the info!
User-friendly and safe templating engine?
1 project | /r/laravel | 15 Dec 2022

For HTML specifically, HTMLPurifier is pretty well known.
Cross-site Scripting (XSS) and ways to prevent it in PHP applications
1 project | dev.to | 9 Aug 2022

There are several third party PHP libraries which are commonly used to assist in XSS prevention. Examples👇 HTML Purifier – here PHP Anti-XSS – here htmLawed – here
WYSISYG Editor Issues
1 project | /r/PHPhelp | 23 Jan 2022

You need to filter the received HTML code and remove the tags and attributes you don't allow. The easiest way to do this is to use htmlpurifier. Otherwise you have to manually cleanup the HTML by using strip_tags and maybe some xml parsing (or regex) to remove unwanted attributes.
How to use Laraberg on the client side and avoid XSS attacks?
1 project | /r/laravel | 19 Jan 2022
How to properly sanitise & check POST data from REST API? Which libraries can you suggest? best ways nowadays in 2022
4 projects | /r/webdev | 29 Dec 2021

Or HTMLPurifier.
Looking for a simple html sanitizer that could also filter authorized charcters to use in an article
1 project | /r/PHPhelp | 21 Dec 2021

Definitely, its one of the best http://htmlpurifier.org/
I might get an intern as a php dev, only used languages & web frameworks etc. What should I know?
11 projects | /r/PHPhelp | 11 Nov 2021

Popular Packages & Tools - The League of Extraordinary Packages - Twig Templating engine - PHP Mailer - SwiftMailer - Flysystem file storage - PHPUnit testing - HTML Purifier
HTML Washer
1 project | /r/PHP | 5 Jul 2021

Check out this lib: http://htmlpurifier.org/. It is widely used in the PHP World.

What are some alternatives?

When comparing class-validator and HTML Purifier you can also consider the following projects:

zod - TypeScript-first schema validation with static type inference

AntiXSS - ㊙️ AntiXSS | Protection against Cross-site scripting (XSS) via PHP

joi - The most powerful data validation library for JS [Moved to: https://github.com/hapijs/joi]

Symfony - The Symfony PHP framework

class-transformer - Decorator-based transformation, serialization, and deserialization between objects and classes.

ZAP - The ZAP core project

TypeORM - ORM for TypeScript and JavaScript. Supports MySQL, PostgreSQL, MariaDB, SQLite, MS SQL Server, Oracle, SAP Hana, WebSQL databases. Works in NodeJS, Browser, Ionic, Cordova and Electron platforms.

Halite - High-level cryptography interface powered by libsodium

ajv - The fastest JSON schema Validator. Supports JSON Schema draft-04/06/07/2019-09/2020-12 and JSON Type Definition (RFC8927)

Laravel - Laravel is a web application framework with expressive, elegant syntax. We’ve already laid the foundation for your next big idea — freeing you to create without sweating the small things.

io-ts - Runtime type system for IO decoding/encoding

SensioLabs Security Check - A database of PHP security advisories