Skip to main content

Deno 2.2 is here with built-in OpenTelemetry, Lint plugins, node:sqlite, and more 🎉️

Search npm for packages to use with Deno

Millions of packages that you already know npm are just a few keystrokes away.
Add them to your projects with a simple command that will already feel familar.

safe-buffer
Safer Node.js Buffer API
buffer buffer allocate node security safe safe-buffer security uninitialized
ssri
Standard Subresource Integrity library -- parses, serializes, generates, and verifies integrity metadata according to the SRI spec.
w3c web security integrity checksum hashing subresource integrity sri sri hash sri string sri generator html
dompurify
DOMPurify is a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. It's written in JavaScript and works in all modern browsers (Safari, Opera (15+), Internet Explorer (10+), Firefox and Chrome - as well as almost anything else usin
dom xss html svg mathml security secure sanitizer sanitize filter purify
secure-json-parse
JSON parse with prototype poisoning protection
JSON parse safe security prototype pollution
crypto-js
JavaScript library of crypto standards.
security crypto Hash MD5 SHA1 SHA-1 SHA256 SHA-256 RC4 Rabbit AES DES PBKDF2 HMAC
@noble/hashes
Audited & minimal 0-dependency JS implementation of SHA, RIPEMD, BLAKE, HMAC, HKDF, PBKDF & Scrypt
sha sha2 sha3 sha256 sha512 keccak kangarootwelve ripemd160 blake2 blake3 hmac hkdf pbkdf2 scrypt
tuf-js
JavaScript implementation of The Update Framework (TUF)
tuf security update
@tufjs/models
TUF metadata models
tuf security update
helmet
help secure Express/Connect apps with various HTTP headers
express security headers backend content-security-policy cross-origin-embedder-policy cross-origin-opener-policy cross-origin-resource-policy origin-agent-cluster referrer-policy strict-transport-security x-content-type-options x-dns-prefetch-control x-download-options
xss
Sanitize untrusted HTML (to prevent XSS) with a configuration specified by a Whitelist
sanitization xss sanitize sanitisation input security escape encode filter validator html injection whitelist
cssfilter
Sanitize untrusted CSS with a configuration specified by a Whitelist. 根据白名单过滤CSS
sanitization xss sanitize sanitisation input security escape encode filter validator html css injection whitelist
express-rate-limit
Basic IP rate-limiting middleware for Express. Use to limit repeated requests to public APIs and/or endpoints such as password reset.
express-rate-limit express rate limit ratelimit rate-limit middleware ip auth authorization security brute force bruteforce
@hapi/cryptiles
General purpose crypto utilities
cryptography security utilites
super-regex
Make a regular expression time out if it takes too long to execute
regex regexp regular expression timeout time out cancel expire abort redos security script execute
isomorphic-dompurify
Makes it possible to use DOMPurify on server and client in the same way.
security dompurify xss-filter xss isomorphic wrapper universal ssr html-escape sanitize sanitize-html sanitizer
function-timeout
Make a synchronous function have a timeout
function synchronous timeout time out cancel expire abort regex regexp redos security func fn
rate-limiter-flexible
Node.js rate limiter by key and protection from DDoS and Brute-Force attacks in process Memory, Redis, MongoDb, Memcached, MySQL, PostgreSQL, Cluster or PM
ratelimter authorization security rate limit bruteforce throttle redis mongodb dynamodb mysql postgres prisma koa
eslint-plugin-security
Security rules for eslint
eslint security nodesecurity
csprng
Secure random numbers of any size in any base
crypto math random security
@openzeppelin/contracts
Secure Smart Contract library for Solidity
solidity ethereum smart contracts security zeppelin