awesome-frontend-security
github.com/rustcohlnikov/awesome-frontend-security ↗☔️A curated list of tools, articles & resources to help take your frontend security to the next level. Feel free to contribute!
Use this list with your AI agent
Add the Context Awesome MCP server to Claude, Cursor, or any MCP client, then ask:
"Show me content-security-policy resources from awesome-frontend-security"
Installation instructions →What's inside
Code
- AJAX Security Cheatsheet
A starting point for AJAX security.
- JavaScript Secure Coding Practices
A guide written for anyone who is using the JavaScript for web development.
- Security Policy
How to add a security policy to your Github repository.
Other lists
- Awesome Web Security
A curated list of Web Security materials and resources.
- CSP useful
A collection of parsers, examples and tips for Content Security Policy.
Headers
- CSP EvaluatorContent-Security-Policy
Paste your policy and check if its safe and strong enough.
- CSP Hash GeneratorContent-Security-Policy
Script and style hasher for
- CSP Header InspectorContent-Security-Policy
Validate your policies as served from the given URL.
- CSP Is Dead, Long Live CSP!Content-Security-Policy
On the Insecurity of Whitelists and the Future of Content Security Policy.
- CSP TesterContent-Security-Policy
Browser extension for testing Content Security Policy (CSP).
- CSP WTF?Content-Security-Policy
Explanations for strange CSP Report notifications.
Articles
- Cybersecurity threatscape
Positive Technologies' quarter report on cyber threats and recommendations on how to stay safe.
- The Most Common XSS Vulnerability in React.js Applications
- Trusted Types help prevent Cross-Site Scripting
About new browser API that might help obliterate DOM XSS.
Dependencies
- Github Automated Security Fixes
How to use automated or manual pull requests to easily update vulnerable dependencies.
- Vulnerable Dependency Management
About tools for detecting vulnerable third-party dependencies.
Showing a sample of 22 resources. View the full list on GitHub →