js-xss vs Themis

js-xss

Sanitize untrusted HTML (to prevent XSS) with a configuration specified by a Whitelist (by leizongmin)

Themis

Easy to use cryptographic framework for data protection: secure messaging with forward secrecy and secure data storage. Has unified APIs across 14 platforms. (by cossacklabs)

Source Code

cossacklabs.com

Docs

Our great sponsors

Appwrite - The Open Source Firebase alternative introduces iOS support

SonarQube - Static code analysis for 29 languages.

InfluxDB - Access the most powerful time series database as a service

ONLYOFFICE ONLYOFFICE Docs — document collaboration in your environment

Our great sponsors

js-xss		Themis
	Project
4	Mentions	2
4,906	Stars	1,704
-	Growth	0.8%
4.8	Activity	8.3
2 months ago	Latest Commit	2 days ago
HTML	Language	C
GNU General Public License v3.0 or later	License	Apache License 2.0

The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.

js-xss

Posts with mentions or reviews of js-xss. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2023-03-25.

Introducing xss-shield - protect your Express.js App from XSS Attacks
2 projects | reddit.com/r/webdev | 25 Mar 2023

xss-shield is a powerful middleware package that helps you protect your express.js app from Cross-Site Scripting (XSS) attacks. It's built on top of the popular xss (https://www.npmjs.com/package/xss) package and includes additional features like strict typing
Browser extension - Integrate your features securely
2 projects | dev.to | 16 Feb 2021

There are a few libraries you can use to protect from xss. For instance the xss library on npm.

Themis

Posts with mentions or reviews of Themis. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2021-05-12.

Backstage: cryptographic R&D internship at Cossack Labs
4 projects | dev.to | 12 May 2021

Now, the real world work starts. We introduce interns to the world of popular cryptographic libraries, help them to make their first OSS contributions, and let them practice with our cryptographic library Themis which provides a high-level crypto API on 14 languages.

What are some alternatives?

When comparing js-xss and Themis you can also consider the following projects:

DOMPurify - DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:

sanitize-html - Clean up user-submitted HTML, preserving whitelisted elements and whitelisted attributes on a per-element basis. Built on htmlparser2 for speed and tolerance

xss-filters

tweetnacl-java - TweetNaCl in Java - a port of TweetNaCl-js

cryptography - cryptography is a package designed to expose cryptographic primitives and recipes to Python developers.

NeDB - The JavaScript Database, for Node.js, nw.js, electron and the browser

snyk - Snyk CLI scans and monitors your projects for security vulnerabilities. [Moved to: https://github.com/snyk/cli]

Crypto++ - free C++ class library of cryptographic schemes

Paramiko - The leading native Python SSHv2 protocol library.

Retire.js - scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.

CryptoSwift - CryptoSwift is a growing collection of standard and secure cryptographic algorithms implemented in Swift

js-xss vs DOMPurify

js-xss vs sanitize-html

Themis vs DOMPurify