|19 days ago||8 days ago|
|GNU General Public License v3.0 or later||-|
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Storing user input html in a database for others users to see
1 project | reddit.com/r/webdev | 29 Nov 2021
Searching for XSS specifically actually comes up with a few - https://www.npmjs.com/package/xss looks solid. I was being to literal in my search! Should have tried bing.
Browser extension - Integrate your features securely
2 projects | dev.to | 16 Feb 2021
There are a few libraries you can use to protect from xss. For instance the xss library on npm.
Contract example with best practices?
3 projects | reddit.com/r/solidity | 16 Jan 2022
RESOURCES I USED TO LEARN BLOCKCHAIN/SMART CONTRACT PROGRAMMING
3 projects | dev.to | 8 Jan 2022
Smart Contracts Best Practices
Great resource for smart contact security
1 project | reddit.com/r/ethdev | 19 Dec 2021
Solidity Security Best Practices
1 project | reddit.com/r/SoliditySecurity | 15 Dec 2021
What language to learn before Solidity?
1 project | reddit.com/r/solidity | 13 Dec 2021
A good read to get the general understanding : https://github.com/ConsenSys/smart-contract-best-practices/blob/master/docs/index.md
36 projects | dev.to | 11 Dec 2021
Por onde começar em tecnologias blockchain ?
3 projects | reddit.com/r/devpt | 20 Oct 2021
Tooling e best practices: https://github.com/ConsenSys/ethereum-developer-tools-list https://github.com/ConsenSys/smart-contract-best-practices
What are some alternatives?
DOMPurify - DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:
sanitize-html - Clean up user-submitted HTML, preserving whitelisted elements and whitelisted attributes on a per-element basis. Built on htmlparser2 for speed and tolerance
Themis - Easy to use cryptographic framework for data protection: secure messaging with forward secrecy and secure data storage. Has unified APIs across 14 platforms.
mythril - Security analysis tool for EVM bytecode. Supports smart contracts built for Ethereum, Hedera, Quorum, Vechain, Roostock, Tron and other EVM-compatible blockchains.
RideX - A Decentralized Riding System
public-cookbooks - The central repository of public Sensei cookbooks