Tools mentioned by Frederik Braun

Software and services Frederik Braun has mentioned across podcast appearances.

SignalCast may earn a small commission on purchases through these links — at no extra cost to you. As an Amazon Associate we earn from qualifying purchases.

Sanitizer API
Recommended
“Frederik Braun, manager of Firefox application security at Mozilla, explains the newly shipped Sanitizer API — a browser-native solution to cross-site scripting (XSS).”
Mentioned on: Shop Talk Show · 704: Sanitizer API with Frederik Braun
DOMPurify
Recommended
by Mario Heiderich
“For browsers not yet supporting the Sanitizer API, DOMPurify remains the recommended library — its author Mario Heiderich co-authored the Sanitizer API specification. DOMPurify weighs approximately 8.3KB gzipped.”
Mentioned on: Shop Talk Show · 704: Sanitizer API with Frederik Braun
Content Security Policy (CSP)
“Content Security Policy's Trusted Types feature can be set to reject all `innerHTML`, `document.write`, `outerHTML`, and `insertAdjacentHTML` calls at runtime via a single HTTP header configuration.”
Mentioned on: Shop Talk Show · 704: Sanitizer API with Frederik Braun

← Back to Frederik Braun's podcast appearances

Sanitizer API

DOMPurify

Content Security Policy (CSP)