Security

Security tools, vulnerability scanners, and security-focused utilities. Packages among the 3,000 most downloaded in the past 90 days.

59 packages
  • SSL verification library

    107
    5.3m last 90 days
  • certifi 2.15.0

    CA bundle adapted from Mozilla by https://certifi.io

    133
    5.3m last 90 days
  • castore 1.0.15

    Up-to-date CA certificate store.

    168
    4.5m last 90 days
  • Helper library that obfuscates sensitive values in process state

    13
    1.8m last 90 days
  • sobelow 0.14.0

    Security-focused static analysis for Elixir & the Phoenix framework

    20
    1.5m last 90 days
  • An Elixir Plug that adds Cross-Origin Resource Sharing (CORS) headers to requests and responds to preflight requests (OPTIONS).

    406
    1.5m last 90 days
  • CA store + Partial chain handler

    23
    1.4m last 90 days
  • MixAudit provides a `mix deps.audit` task to scan a project Mix dependencies for known Elixir security vulnerabilities

    365
    1.2m last 90 days
  • hammer 7.1.0

    A rate-limiter with plugable backends.

    871
    575.6k last 90 days
  • ExRated, the OTP GenServer with the naughty name that allows you to rate-limit calls to any service that requires it. For example, rate-limit calls to your favorite API which requires no more than `limit` API calls within a `scale` milliseconds time window.

    459
    502.9k last 90 days
  • HTML sanitizer for Elixir

    282
    481.0k last 90 days
  • Redis backend for Hammer rate-limiter

    51
    254.5k last 90 days
  • The Paraxial.io Agent.

    -
    236.5k last 90 days
  • A plug building toolkit for blocking and throttling abusive requests.

    437
    112.3k last 90 days
  • zxcvbn 0.3.0

    Elixir implementation of zxcvbn

    60
    72.5k last 90 days
  • A plug to apply rate-limiting, using Hammer.

    70
    65.5k last 90 days
  • A library for manipulating sensitive/private/confidential data and avoiding data leaks.

    16
    58.6k last 90 days
  • Server side implementation of IETF HTTP signature draft as a reusable Plug

    20
    54.2k last 90 days
  • Simple key/secret based authentication for APIs

    27
    44.7k last 90 days
  • A package that allows you to store encrypted application secrets in your VCS

    -
    36.4k last 90 days
  • ContentSecurityPolicy makes working with the `"Content-Security-Policy"` response header simple.

    9
    32.6k last 90 days
  • paseto 1.5.0

    An Elixir implementation of the Paseto (Platform Agnostic Security Token) protocol.

    97
    27.1k last 90 days
  • A Plug module for inserting a Content Security Policy header into the response. Supports generating nonces as specified in CSP Level 2.

    24
    23.1k last 90 days
  • Mnesia backend for Hammer rate-limiter

    14
    19.4k last 90 days
  • A simple lib to define right SSL options

    3
    18.1k last 90 days
  • Cloud Key Management Service (KMS) API client library. Manages keys and performs cryptographic operations in a central cloud service, for direct use by other cloud resources and applications.

    1.1k
    17.6k last 90 days
  • A simple reCaptcha package for Elixir applications, provides verification and templates for rendering forms with the reCaptcha widget.

    113
    16.6k last 90 days
  • Highly configurable library for HashiCorp's Vault - handles authentication for multiple backends, and reading, writing, listing, and deleting secrets for a variety of engines.

    44
    16.1k last 90 days
  • safeurl 1.0.0

    SSRF Protection in Elixir 🛡️

    64
    13.1k last 90 days
  • IAM Service Account Credentials API client library. Creates short-lived credentials for impersonating IAM service accounts. Disabling this API also disables the IAM API (iam.googleapis.com). However, enabling this API doesn't enable the IAM API.

    1.1k
    12.9k last 90 days
  • A module to insert sensible security headers

    30
    12.6k last 90 days
  • Elixir implementation of Cloudfront's url signature algorithm.

    0
    10.9k last 90 days
  • This library provides security utilities to validate a GraphQL query before executing it.

    16
    10.4k last 90 days
  • An Elixir library to sign and verify HTTP requests using AWS Signature V4.

    -
    9.9k last 90 days
  • Integrated certification via Let's encrypt for Elixir-powered sites

    486
    9.0k last 90 days
  • A CORS Builder, performing validation and injection of CORS for misp, wisp and any framework!

    12
    7.8k last 90 days
  • clamex 0.2.2

    Thin, error-friendly and testable wrapper for ClamAV

    3
    7.5k last 90 days
  • Library for manipulating and validating HTTP signatures

    -
    7.3k last 90 days
  • pest 0.9.0

    Primitive Erlang Security Tool

    103
    7.2k last 90 days
  • dune 0.3.14

    A sandbox for Elixir to safely evaluate untrusted code from user input

    189
    7.2k last 90 days
  • Use Cloudflare Turnstile in Phoenix

    17
    6.6k last 90 days
  • p1_acme 1.0.27

    ACME client

    11
    6.2k last 90 days
  • Runtime application self protection for Elixir.

    56
    6.0k last 90 days
  • clamxir 0.1.9

    Clamav wrapper.

    13
    5.9k last 90 days
  • Data anonymization for your Ecto models

    92
    5.4k last 90 days
  • High performance application-layer DDoS protection for Elixir Phoenix

    40
    4.8k last 90 days
  • vaultex 1.0.1

    A very simple read only client that authenticates and reads secrets from HashiCorp's Vault.

    108
    4.5k last 90 days
  • vigil 0.4.4

    Disable introspection and exfiltration of GraphQL schemas

    7
    4.1k last 90 days
  • Middleware-based rate limiting for Absinthe

    0
    3.6k last 90 days
  • Rebar3 plugin to generate CycloneDX SBoM

    10
    3.6k last 90 days
  • Server side implementation of RFC3230 Instance Digests as a Plug

    6
    3.3k last 90 days
  • sigaws 0.7.2

    An Elixir library to sign and verify HTTP requests using AWS Signature V4.

    13
    3.1k last 90 days
  • Rate limiting Plug module based on Redis Lua scripting

    13
    3.1k last 90 days
  • Validate if code is safe to load and run

    27
    3.0k last 90 days
  • secrex 0.4.0

    Simple and secure secrets manager in Elixir projects.

    28
    2.8k last 90 days
  • sandbox 0.5.0

    Sandbox provides restricted, isolated scripting environments for Elixir through the use of Lua by wrapping Robert Virding's Luerl library.

    29
    1.9k last 90 days
  • An Ash extension for rate limiting actions

    -
    1.9k last 90 days
  • A high performance rate limiter on top of erlang atomics for Elixir

    36
    1.8k last 90 days
  • altcha 0.2.0

    A lightweight library for creating and verifying ALTCHA challenges.

    7
    1.8k last 90 days