Show HN: Dssrf – A safe‑by‑construction SSRF defense library for Node.js https://ift.tt/OWH3ZCp

Show HN: Dssrf – A safe‑by‑construction SSRF defense library for Node.js I built dssrf, a safe-by-construction SSRF defense library for Node.js apps. Most existing SSRF libraries rely on blacklists or regex checks, which are easy to bypass. dssrf takes a different approach based on normalization, DNS resolution, redirect validation, and IP classification. Key features: – URL normalization RFC compliant – DNS resolution + IP classification – Redirect chain validation – IPv4/IPv6 safety – Rebinding detection – Protocol restrictions – TypeScript types included The goal is to eliminate entire classes of classic SSRF vulnerability and it bypasses rather than patching individual payloads. GitHub: https://ift.tt/LClof20 npm: https://ift.tt/jcsz1no I love feedback, edge cases, and contributions from the community. December 12, 2025 at 10:15PM