Caja

The Caja Compiler is a tool for making third party HTML, CSS and JavaScript safe to embed in your website. It enables rich interaction between the embedding page and the embedded applications. Caja uses an object-capability security model to allow for a wide range of flexible security policies, so that your website can effectively control what embedded third party code can do with user data. The Caja Compiler supports most HTML and CSS and the recently standardized ”strict mode” version of JavaScript -- even on older browsers that do not support strict mode. It allows third party code to use new JavaScript features on older browsers that do not support them.

Keywords for this software

Anything in here will be replaced on browsers that support the canvas element


References in zbMATH (referenced in 2 articles )

Showing results 1 to 2 of 2.
Sorted by year (citations)

  1. Nikos Vasilakis, Cristian-Alexandru Staicu, Greg Ntousakis, Konstantinos Kallas, Ben Karel, André DeHon, Michael Pradel: Mir: Automated Quantifiable Privilege Reduction Against Dynamic Library Compromise in JavaScript (2020) arXiv
  2. De Groef, Willem; Devriese, Dominique; Vanhoef, Mathy; Piessens, Frank: Information flow control for web scripts (2014) ioport