Compare projects
Project comparisons allow you to view any selection of projects side by side just like they're shown on regular categories or in search results. You can try out an example or start yourself by adding a library to the comparison via the input below. You can also easily share your current comparison with others by sending the URL of the current page.
0.0
A small, dependency-light Ruby tool for untrusted SVG. It flags the things that make SVG dangerous to render or embed: scripts, event handlers, javascript: URIs, external references (including inside CSS), scriptable data: URIs, foreign objects, XXE via DOCTYPE or ENTITY declarations, and nested-<use> render bombs. It can also sanitize - rewrite an SVG into a safe one - and re-rates findings for the rendering context (inline vs <img>). Normalises encoding, caps size, and bounds structural shape on a streaming pass so it is safe to point at hostile input. Ships a strict allowlist profile for brand-mark logos (BIMI-style), a general profile, YAML config, and a CLI with CI-friendly exit codes and SARIF output. Pure Ruby, parses with REXML, no native extensions.
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
2025
2026