# 使用 npm 安装 xss

查看 xss 的安装路径、可执行文件、元数据以及面向 AI 代理工作流的安全说明。

## 安装

```sh
sudo av install npm:xss
```

其他安装命令:

### 便携式和语言管理器

- npm (100%):

```sh
npm install -g xss
```

  证据: local npm package metadata

## 软件包事实

- **软件包键:** npm:xss
- **软件包管理器:** npm
- **软件包管理器页面:** <https://www.npmjs.com/package/xss>
- **版本:** 1.0.15
- **来源摘要:** Sanitize untrusted HTML (to prevent XSS) with a configuration specified by a Whitelist
- **主页:** <https://github.com/leizongmin/js-xss>
- **仓库:** <https://github.com/leizongmin/js-xss>
- **上游文档:** <https://github.com/leizongmin/js-xss>
- **许可证:** MIT
- **源码归档:** <https://registry.npmjs.org/xss/-/xss-1.0.15.tgz>
- **问题跟踪器:** <https://github.com/leizongmin/js-xss/issues>
- **发布时间:** 2024-03-03T02:33:54.727Z
- **最后更新:** 2024-03-03T02:33:54.727Z
- **已生成:** 2026-07-10T07:20:53+00:00

## 可执行文件

- xss (cli)
- xss (别名)

## 依赖

- commander
- cssfilter

## 构建依赖

- browserify
- coveralls
- debug
- eslint
- mocha
- nyc
- uglify-js

## 安装行为

- post-install 钩子: 未定义
- npm 生命周期脚本: prepublish
- Bottle: 不可用

## 版本和新鲜度

- 页面生成时间: 2026-07-10
- 管理器版本: 1.0.15
- 管理器更新时间: 2024-03-03
- 本地数据: OK
- 上游仓库: https://github.com/leizongmin/js-xss
- 警告: The package-manager record has not been updated in over a year.
- 信息: No cached GitHub release or tag data was available.

## 安全说明

没有找到 xss 的匹配本地密钥处理 manifest。Nucleus 软件包元数据仍在此发布，以便未来覆盖拥有稳定的软件包 URL。


## 源数据库详情

- **Source Database:** npm registry
- **Dist Tags:** Latest: 1.0.15
- **Version Count:** 71
- **Maintainers:** leizongmin
- **Author:** Zongmin Lei
- **Publisher:** leizongmin
- **Engines:** Node: >= 0.10.0
- **Integrity:** sha512-FVdlVVC67WOIPvfOwhoMETV72f6GbW7aOabBC3WxN/oUdoEMDyLz4OgRv5/gck2ZeNqEQu+Tb0kloovXOfpYVg==
- **Shasum:** 96a0e13886f0661063028b410ed1b18670f4e59a
- **Unpacked Size:** 145,290
- **File Count:** 0
- **Created At:** 2012-09-19T12:13:55.901Z
- **Latest Published At:** 2024-03-03T02:33:54.727Z
- **Modified At:** 2026-02-11T21:44:15.464Z


## 相关链接

- [Security and crypto packages](https://www.automicvault.com/zh-hans/pkg/security-crypto-tools/) - Matched curated package taxonomy and local package facts.
- [npm-audit-html](https://www.automicvault.com/zh-hans/pkg/npm/npm-audit-html/) - Both packages work with overlapping file formats or content types. Shared terms: cli, commander, html, security.
- [snyk-to-html](https://www.automicvault.com/zh-hans/pkg/npm/snyk-to-html/) - Both packages work with overlapping file formats or content types. Shared terms: cli, commander, html, security.
- [uuid-apikey](https://www.automicvault.com/zh-hans/pkg/npm/uuid-apikey/) - Security-sensitive metadata or terminology overlaps. Shared terms: cli, commander, security, validator.

## 来源

- Nucleus package database
- package-page enrichment
- package version freshness
- av.db category and tag curation
- package relationship graph
- cross-ecosystem install command graph
