mongo-sanitize

Release 1.1.0

Helper to sanitize mongodb queries against query selector injections

Homepage Repository npm JavaScript Download

Keywords
mongodb, sanitize, query, selector, injection, Petko
License
MIT
Install
npm install mongo-sanitize@1.1.0

Documentation

mongo-sanitize

For the passionately lazy, a standalone module that sanitizes inputs against query selector injection attacks:

var sanitize = require('mongo-sanitize');

// The sanitize function will strip out any keys that start with '$' in the input,
// so you can pass it to MongoDB without worrying about malicious users overwriting
// query selectors.
var clean = sanitize(req.params.username);

Users.findOne({ name: clean }, function(err, doc) {
  // ...
});

If sanitize() is passed an object, it will mutate the original object.

Stats

Dependencies
0
Dependent packages
44
Dependent repositories
280
Total releases
3
Latest release
First release
Stars
138
Forks
11
Watchers
7
Contributors
3
Repository size
8.79 KB
SourceRank
16

Development practices

Source repo 2FA enabled
TEXT!
Package manager 2FA enabled
TEXT!
Is security responsive
TEXT!
Dependencies are managed
TEXT!
Issue-free release available
TEXT!
Succession plan available
TEXT!
Package manager 2FA enabled
TEXT!

The Tidelift Subscription provides access to a continuously curated stream of human-researched and maintainer-verified data on open source packages and their licenses, releases, vulnerabilities, and development practices.

Learn more

Releases

1.1.0
1.0.1
1.0.0

Contributors

Valeri Karpov Steven Tang Raphaël Dubigny


See all contributors

Something wrong with this page? Make a suggestion

Export .ABOUT file for this package

Last synced: 2024-02-11 16:45:52 UTC

Login to resync this project