Themis
acra
Our great sponsors
| Themis | acra | |
|---|---|---|
| 2 | 4 | |
| 1,807 | 6,219 | |
| 0.4% | 0.4% | |
| 5.9 | 9.2 | |
| 3 months ago | 7 days ago | |
| C | Kotlin | |
| Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Themis
-
Backstage: cryptographic R&D internship at Cossack Labs
Now, the real world work starts. We introduce interns to the world of popular cryptographic libraries, help them to make their first OSS contributions, and let them practice with our cryptographic library Themis which provides a high-level crypto API on 14 languages.
acra
-
Why does F-droid have trackers?
Why AM considers ACRA as tracker (and not logger like AppWarden does)? See the README page: https://github.com/ACRA/acra. It explicitly states that ACRA can be used to send not only the crash reports but also other information directly from the app if the app has the INTERNET permission. This is what makes it a tracker because it can send information to the server without any user intervention or consent. F-Droid doesn’t use this feature (and probably many apps don’t) but that’s left for the user to find out. But if people didn’t know about the existence of this tracker, they would never ask F-Droid for an explanation. A tracker is a tracker regardless of who use them. If AM used some form of whitelists, that would raise the question of authoritarianism.
What are some alternatives?
DOMPurify - DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:
tweetnacl-java - TweetNaCl in Java - a port of TweetNaCl-js
cryptography - cryptography is a package designed to expose cryptographic primitives and recipes to Python developers.
snyk - Snyk CLI scans and monitors your projects for security vulnerabilities. [Moved to: https://github.com/snyk/cli]
NeDB - The JavaScript Database, for Node.js, nw.js, electron and the browser
Paramiko - The leading native Python SSHv2 protocol library.
Crypto++ - free C++ class library of cryptographic schemes
js-xss - Sanitize untrusted HTML (to prevent XSS) with a configuration specified by a Whitelist
CryptoSwift - CryptoSwift is a growing collection of standard and secure cryptographic algorithms implemented in Swift
android-security-awesome - A collection of android security related resources
RegEx-DoS - :cop: :punch: RegEx Denial of Service (ReDos) Scanner
libsodium - A modern, portable, easy to use crypto library.