๐ง Socially Engineering LLMs ๐ค Hacking AI Agents ๐ฆ Node.js Secure Coding ๐ @GitHub Star ๐ @OpenJS Pathfinder award 4 Security ๐ฅ DevRel @snyksec
nodejs-cli-apps-best-practices. The largest Node.js CLI Apps best practices list โจ
4.1kdockly. Immersive terminal interface for managing docker containers and services
4kawesome-nodejs-security. Awesome Node.js Security resources
3kis-website-vulnerable. finds publicly known security vulnerabilities in a website's frontend JavaScript libraries
2knpq. safely install npm packages by auditing them pre-install stage
1.8knpm-security-best-practices. Collection of npm package manager Security Best Practices
1.2kdaloradius. daloRADIUS is an advanced RADIUS web management application for managing hotspots and general-purpose ISP deployments. It features user management, graphical reporting, accounting, a billing engine, and integrates with OpenStreetMap for geolocation. The system is based on FreeRADIUS with which it shares access to the backend database.
886lockfile-lint. Lint an npm or yarn lockfile to analyze and detect security issues
865awesome-opensource-israel. A curated list of Israeli-made projects, events, and individuals
428cypress-social-logins. Cypress authentication flows using social network providers
251essential-nodejs-security-book. Documentation for Essential Node.js Security
96express-version-route. A Node.js express middleware that implements API versioning for route controllers
90awesome-contract-testing. Awesome resources for Consumer-Driven Contract Testing
86ls-mcp. List MCP Server configurations in your system used by AI applications like Cursor, Claude Desktop, VS Code and others
84anti-trojan-source. Detect Glassworm & trojan source attacks that employ unicode bidi attacks to inject malicious code
83eslint-plugin-anti-trojan-source. ESLint plugin to detect and stop Trojan Source attacks
80awesome-mcp-best-practices. Build Awesome MCPs with Awesome Best Practices for MCP Servers and MCP Clients
78asciidoc-book-starter. A template repository that is ready to author and publish books written in AsciiDoc format
72agent-rules. Rules and instructions for agentic coding tools like Cursor, Claude CLI, Gemini CLI, Qodo, Cline and more
55detect-secrets. A developer-friendly secrets detection tool for CI and pre-commit hooks based on Yelp's detect-secrets
51create-node-lib. Scaffold a batteries-included Node.js library project with docs, tests, semantic releases and more
45licenseye. Node.js CLI tool to visualize an aggregate list of your dependencies' licenses
44pie-my-vulns. Visualize your project security vulnerabilities as a pie chart in the terminal
26learning-http-security-headers-book. Hands-on practical use of HTTP security headers as browser security controls to help secure web applications
21women-of-open-source-israel. WOSI - Women of Open Source Israel ๐ฎ๐ฑ
19organising-awesome-meetups. Do you want to start a meetup group but you don't know exactly where to start? You're in the right place!
19codeigniter-menu. Menu Navigation extension for CodeIgniter PHP framework
19typeform-client. A friendlier Typeform Node.js API client
18enterprise-applications-patterns. Collection of enterprise application patterns
18github-action-new-dependencies-advisor. GitHub Action adding a comment with information about new npm dependencies detected in a pull request
18express-security-txt. A Node.js middleware for Express that implements Security.txt - A Method for Web Security Policies
18Drupal2Wordpress. Migrate Drupal 7 Sites to Wordpress 3.9, and Wordpress 4
17Riess.js. Riess.js is a de-coupled full stack JavaScript application framework
16twiks. Twitter awesomeness browser extension
15cron-to-quartz. Node.js library to convert unix or linux CRON syntax to Quartz Scheduler
15agilemanager-api. HPE's Agile Manager client API module for NodeJS
14docker-travis-cli. Travis CLI in a docker container (encrypt, lint, env, monitor)
12express-version-request. versions an incoming request to Express based on header or URL
11mcp-server-nodejs-api-docs. MCP Server for Node.js API documentation
11cwe-sdk. A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC
10smtp-pipe. Pipe any mail envelope input and output forward as SMTP client
10github-actions-best-practices-for-node.js. GitHub Actions Best Practices for Node.js applications
9fastify-dotenv-envschema-example. A Fastify example codebase for using dotenv with env-schema wrapper
6nodejssecurity-headers-hsts. Exercise resources about HTTP security headers in Node.js and Express applications
6