{"id":30619051,"url":"https://github.com/jbloch100/safefront","last_synced_at":"2026-04-12T09:02:16.721Z","repository":{"id":310936833,"uuid":"1041802623","full_name":"jbloch100/safefront","owner":"jbloch100","description":"    🛡️ A front-end web security toolkit with password strength checker, URL inspector, HTTP security headers audit, and XSS sanitizer demo. Built with React + Vite, deployed on Vercel.","archived":false,"fork":false,"pushed_at":"2025-08-22T18:30:33.000Z","size":536,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":0,"default_branch":"main","last_synced_at":"2025-08-30T12:26:04.706Z","etag":null,"topics":["dompurify","http-headers","javascript","password-strength","react","security","vercel","vite","web-security","xss"],"latest_commit_sha":null,"homepage":"https://safefront-eight.vercel.app","language":"JavaScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/jbloch100.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2025-08-21T03:19:59.000Z","updated_at":"2025-08-22T18:30:48.000Z","dependencies_parsed_at":"2025-08-21T06:42:40.172Z","dependency_job_id":"49bb8e81-d217-4c89-9de5-9eb39a46a9f0","html_url":"https://github.com/jbloch100/safefront","commit_stats":null,"previous_names":["jbloch100/safefront"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/jbloch100/safefront","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jbloch100%2Fsafefront","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jbloch100%2Fsafefront/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jbloch100%2Fsafefront/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jbloch100%2Fsafefront/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/jbloch100","download_url":"https://codeload.github.com/jbloch100/safefront/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jbloch100%2Fsafefront/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":31709295,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-04-12T06:22:27.080Z","status":"ssl_error","status_checked_at":"2026-04-12T06:21:52.710Z","response_time":58,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.5:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["dompurify","http-headers","javascript","password-strength","react","security","vercel","vite","web-security","xss"],"created_at":"2025-08-30T12:16:49.162Z","updated_at":"2026-04-12T09:02:16.702Z","avatar_url":"https://github.com/jbloch100.png","language":"JavaScript","readme":"# SafeFront\n\n[![Live](https://img.shields.io/badge/demo-online-green.svg)](https://safefront-eight.vercel.app/)\n![React](https://img.shields.io/badge/React-18.x-61DAFB?logo=react\u0026logoColor=white)\n![Vite](https://img.shields.io/badge/Vite-5.x-646CFF?logo=vite\u0026logoColor=white)\n![Vercel](https://img.shields.io/badge/Hosted%20on-Vercel-black?logo=vercel)\n![Security](https://img.shields.io/badge/Focus-Web%20Security-orange)\n\n**SafeFront** is a front‑end web security toolkit built with **React + Vite**.  \nIt includes a password strength tool, a suspicious URL inspector, a **security headers audit** (via API), and an **XSS sanitization** demo using DOMPurify.\n\n🔗 **Live Demo**: https://safefront-eight.vercel.app/\n\n---\n\n## ✨ Features\n- **Password Strength Checker** – entropy/length/character classes\n- **URL Inspector** – flags punycode, IP hosts, suspicious TLDs, many subdomains, and non‑HTTPS\n- **Security Headers Audit** – backend fetch to site and reports CSP, HSTS, XFO, X‑CTO, Referrer‑Policy, Permissions‑Policy\n- **Sanitizer Demo** – shows how DOMPurify prevents XSS\n- **Clean UI** – responsive, lightweight\n\n---\n\n## 🛠 Tech Stack\n- **Frontend**: React, Vite, CSS\n- **Security**: DOMPurify\n- **API**: Serverless endpoint on Vercel (`/api/headers`)\n- **Hosting**: Vercel\n\n---\n\n## 📂 Structure\n```\nsafefront/\n├─ api/                 # Vercel serverless functions\n│  └─ headers.js        # GET /api/headers?url=...\n├─ server/              # Local dev Express server (optional)\n│  └─ index.js\n├─ src/\n│  ├─ components/       # UI widgets\n│  ├─ sections/         # Tools pages\n│  ├─ App.jsx\n│  ├─ main.jsx\n│  └─ index.css\n├─ package.json\n├─ vite.config.js\n└─ index.html\n```\n\n---\n\n## 🔧 Local Setup\n```bash\nnpm install\nnpm run dev:api   # starts local API (optional for dev)\nnpm run dev       # starts Vite (http://localhost:5173)\n```\n\n\u003e Vite proxies `/api` to `http://localhost:5174` during dev (see `vite.config.js`).\n\n---\n\n## 🌐 Deployment\nDeployed on **Vercel** (zero config):\n- **Build:** `npm run build`\n- **Output:** `dist`\n- **API:** `api/headers.js` → `/api/headers`\n\nLive: https://safefront-eight.vercel.app/\n\n---\n\n## 🔎 API: Security Headers Audit\n**Endpoint**\n```\nGET /api/headers?url=https://example.com\n```\n\n**Response**\n```json\n{\n  \"ok\": true,\n  \"url\": \"https://example.com/\",\n  \"status\": 200,\n  \"headers\": { \"content-security-policy\": \"...\", \"strict-transport-security\": \"...\" },\n  \"audit\": {\n    \"hsts\": true,\n    \"csp\": true,\n    \"xFrameOptions\": true,\n    \"xContentTypeOptions\": true,\n    \"referrerPolicy\": true,\n    \"permissionsPolicy\": false,\n    \"httpsRedirectLikely\": true\n  }\n}\n```\n\n---\n\n## 📸 Screenshots\n### Mobile View\n\u003cimg src=\"public/screenshot-mobile.png\" alt=\"SafeFront - Mobile\" width=\"320\"/\u003e\n\n### Desktop View\n\u003cimg src=\"public/screenshot-desktop.png\" alt=\"SafeFront - Desktop\" width=\"720\"/\u003e\n\n---\n\n## 🧪 Troubleshooting\n- **`react/jsx-runtime` not found** → ensure `react` and `react-dom` are installed (18.x) and `@vitejs/plugin-react` is enabled in `vite.config.js`.\n- **404 on `/api/headers` in prod** → file must be at repo root: `api/headers.js`.\n- **CORS locally** → use `npm run dev:api` + Vite proxy (already set).\n\n---\n\n## 🏷 GitHub Topics\n```\nreact vite javascript security web-security http-headers xss dompurify vercel\n```\n\n---\n\n## 📄 License\nMIT — see `LICENSE`.","funding_links":[],"categories":[],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjbloch100%2Fsafefront","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fjbloch100%2Fsafefront","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjbloch100%2Fsafefront/lists"}