Security

Security tools, vulnerability scanners, and security-focused utilities. Packages among the 3,000 most downloaded in the past 90 days.

61 packages
  • ssl_verify_fun 1.1.7

    SSL verification library

    3.0m last 90 days
  • certifi 2.16.0

    CA bundle adapted from Mozilla by https://certifi.io

    133
    2.9m last 90 days
  • castore 1.0.18

    Up-to-date CA certificate store.

    174
    2.2m last 90 days
  • credentials_obfuscation 3.5.0

    Helper library that obfuscates sensitive values in process state

    12
    1.2m last 90 days
  • tls_certificate_check 1.32.1

    CA store + Partial chain handler

    23
    1.1m last 90 days
  • sobelow 0.14.1

    Security-focused static analysis for Elixir & the Phoenix framework

    43
    943.8k last 90 days
  • mix_audit 2.1.5

    MixAudit provides a `mix deps.audit` task to scan a project Mix dependencies for known Elixir security vulnerabilities

    371
    897.1k last 90 days
  • cors_plug 3.0.3

    An Elixir Plug that adds Cross-Origin Resource Sharing (CORS) headers to requests and responds to preflight requests (OPTIONS).

    404
    769.0k last 90 days
  • hammer 7.3.0

    A rate-limiter with plugable backends.

    912
    438.3k last 90 days
  • html_sanitize_ex 1.5.0

    HTML sanitizer for Elixir

    289
    339.7k last 90 days
  • ex_rated 2.1.0

    ExRated, the OTP GenServer with the naughty name that allows you to rate-limit calls to any service that requires it. For example, rate-limit calls to your favorite API which requires no more than `limit` API calls within a `scale` milliseconds time window.

    460
    209.1k last 90 days
  • paraxial 2.9.0

    The Paraxial.io Agent.

    179.0k last 90 days
  • hammer_backend_redis 7.1.1

    Redis backend for Hammer rate-limiter

    56
    136.9k last 90 days
  • acme 0.5.1

    Acme (Let's Encrypt) Client for Elixir

    43
    99.7k last 90 days
  • alexa_request_verifier 0.1.6

    Alexa Request Verifier is a library that handles all of the certificate and request verification for Alexa Requests for certified skills. (See the Alexa Skills Documentation for more information).

    4
    98.4k last 90 days
  • plug_attack 0.4.3

    A plug building toolkit for blocking and throttling abusive requests.

    448
    95.3k last 90 days
  • acme_ex 0.4.1

    A test Acme server for generating SSL Certificates

    2
    85.4k last 90 days
  • acmex 0.2.0

    Acmex is an Elixir Client for the Lets Encrypt ACMEv2 protocol.

    17
    56.9k last 90 days
  • hammer_plug 3.2.0

    A plug to apply rate-limiting, using Hammer.

    73
    53.0k last 90 days
  • altcha 2.0.0

    A lightweight library for creating and verifying ALTCHA challenges.

    9
    50.0k last 90 days
  • allowed_hosts 0.1.2

    Elixir plug to protect your APIs from Host header attacks.

    4
    42.1k last 90 days
  • absinthe_rate_limiting 0.1.0

    Middleware-based rate limiting for Absinthe

    0
    35.0k last 90 days
  • sensitive_data 0.1.0

    A library for manipulating sensitive/private/confidential data and avoiding data leaks.

    17
    34.4k last 90 days
  • absinthe_security 0.1.0

    This library provides security utilities to validate a GraphQL query before executing it.

    17
    31.8k last 90 days
  • paseto 1.5.0

    An Elixir implementation of the Paseto (Platform Agnostic Security Token) protocol.

    98
    25.3k last 90 days
  • zxcvbn 0.3.0

    Elixir implementation of zxcvbn

    61
    25.2k last 90 days
  • plug_signature 0.11.0

    Server side implementation of IETF HTTP signature draft as a reusable Plug

    21
    18.4k last 90 days
  • content_security_policy 1.0.3

    ContentSecurityPolicy makes working with the `"Content-Security-Policy"` response header simple.

    9
    17.3k last 90 days
  • ash_rate_limiter 2.0.0

    An Ash extension for rate limiting actions

    17
    17.1k last 90 days
  • libvault 0.2.4

    Highly configurable library for HashiCorp's Vault - handles authentication for multiple backends, and reading, writing, listing, and deleting secrets for a variety of engines.

    45
    16.0k last 90 days
  • acme_client 2.0.0

    ACME client, supports HTTP-01 and DNS-01 challenges

    3
    14.2k last 90 days
  • alexa_verifier 0.1.0

    A Plug to verify signatures for Amazon Alexa requests

    0
    14.1k last 90 days
  • cloudfront_signer 1.0.0

    Elixir implementation of Cloudfront's url signature algorithm.

    0
    14.0k last 90 days
  • plug_content_security_policy 0.2.1

    A Plug module for inserting a Content Security Policy header into the response. Supports generating nonces as specified in CSP Level 2.

    25
    13.4k last 90 days
  • google_api_cloud_kms 0.43.0

    Cloud Key Management Service (KMS) API client library. Manages keys and performs cryptographic operations in a central cloud service, for direct use by other cloud resources and applications.

    1.1k
    12.7k last 90 days
  • encrypted_secrets 0.3.0

    A package that allows you to store encrypted application secrets in your VCS

    12.7k last 90 days
  • site_encrypt 0.7.0

    Integrated certification via Let's encrypt for Elixir-powered sites

    491
    10.6k last 90 days
  • p1_acme 1.0.31

    ACME client

    13
    9.9k last 90 days
  • ex_ssl_options 0.1.2

    A simple lib to define right SSL options

    3
    8.7k last 90 days
  • recaptcha 3.1.0

    A simple reCaptcha package for Elixir applications, provides verification and templates for rendering forms with the reCaptcha widget.

    113
    8.6k last 90 days
  • plug_secex 0.2.0

    A module to insert sensible security headers

    30
    8.5k last 90 days
  • signaturex 1.5.0

    Simple key/secret based authentication for APIs

    27
    8.2k last 90 days
  • phoenix_turnstile 1.2.0

    Use Cloudflare Turnstile in Phoenix

    20
    7.5k last 90 days
  • safeurl 1.0.0

    SSRF Protection in Elixir 🛡️

    71
    7.0k last 90 days
  • dune 0.3.15

    A sandbox for Elixir to safely evaluate untrusted code from user input

    202
    6.8k last 90 days
  • rebar3_sbom 0.8.0

    Rebar3 plugin to generate CycloneDX SBoM

    12
    6.6k last 90 days
  • google_api_iam_credentials 0.15.0

    IAM Service Account Credentials API client library. Creates short-lived credentials for impersonating IAM service accounts. Disabling this API also disables the IAM API (iam.googleapis.com). However, enabling this API doesn't enable the IAM API.

    1.1k
    6.2k last 90 days
  • clamex 0.2.2

    Thin, error-friendly and testable wrapper for ClamAV

    4
    6.1k last 90 days
  • ecto_anon 0.6.0

    Data anonymization for your Ecto models

    92
    5.7k last 90 days
  • acumen 1.1.1

    Gleam library for interacting with Automatic Certificate Management Environment (ACME) servers like Let's Encrypt

    4
    5.6k last 90 days
  • phoenix_ddos 1.1.20

    High performance application-layer DDoS protection for Elixir Phoenix

    41
    5.5k last 90 days
  • clamxir 0.1.9

    Clamav wrapper.

    14
    4.8k last 90 days
  • hammer_backend_mnesia 0.7.1

    Mnesia backend for Hammer rate-limiter

    16
    4.6k last 90 days
  • cors_builder 2.0.8

    A CORS Builder, performing validation and injection of CORS for misp, wisp and any framework!

    17
    4.4k last 90 days
  • sigaws_otp_24 1.0.0

    An Elixir library to sign and verify HTTP requests using AWS Signature V4.

    4.4k last 90 days
  • pest 0.9.0

    Primitive Erlang Security Tool

    103
    4.0k last 90 days
  • vigil 0.4.4

    Disable introspection and exfiltration of GraphQL schemas

    7
    3.5k last 90 days
  • ssl_verify_hostname 1.0.6

    Hostname verification library for Erlang

    3.5k last 90 days
  • rebar3_audit 0.2.5

    Audit rebar3 dependencies for known vulnerabilities

    3.2k last 90 days
  • exploit_guard 1.0.0

    Runtime application self protection for Elixir.

    56
    3.2k last 90 days
  • vaultex 1.0.1

    A very simple read only client that authenticates and reads secrets from HashiCorp's Vault.

    107
    3.2k last 90 days