Drupal is a registered trademark of Dries Buytaert
drupal 11.3.7 Update released for Drupal core (11.3.7)! drupal 11.2.11 Update released for Drupal core (11.2.11)! drupal 10.6.7 Update released for Drupal core (10.6.7)! drupal 10.5.9 Update released for Drupal core (10.5.9)! cms 2.1.1 Update released for Drupal core (2.1.1)! drupal 11.3.6 Update released for Drupal core (11.3.6)! drupal 10.6.6 Update released for Drupal core (10.6.6)! cms 2.1.0 Update released for Drupal core (2.1.0)! bootstrap 8.x-3.40 Minor update available for theme bootstrap (8.x-3.40). menu_link_attributes 8.x-1.7 Minor update available for module menu_link_attributes (8.x-1.7). eca 3.1.1 Minor update available for module eca (3.1.1). layout_paragraphs 2.1.3 Minor update available for module layout_paragraphs (2.1.3). ai 1.3.3 Minor update available for module ai (1.3.3). ai 1.2.14 Minor update available for module ai (1.2.14). node_revision_delete 2.0.3 Minor update available for module node_revision_delete (2.0.3). moderated_content_bulk_publish 2.0.52 Minor update available for module moderated_content_bulk_publish (2.0.52). klaro 3.0.10 Minor update available for module klaro (3.0.10). klaro 3.0.9 Minor update available for module klaro (3.0.9). layout_paragraphs 2.1.2 Minor update available for module layout_paragraphs (2.1.2). geofield_map 11.1.8 Minor update available for module geofield_map (11.1.8).
← All modules

nesguard

No security coverage
View on drupal.org

NESGuard SRI Monitor integrates Drupal with NESGuard.cloud to provide advanced JavaScript security through Subresource Integrity (SRI) monitoring. It protects your site from supply chain attacks by ensuring external scripts haven't been tampered with.

Features

- Automatically applies SRI integrity attributes to JavaScript resources based on verified hashes
- Real-time monitoring via WebSockets connection to detect and respond to script changes instantly
- Fallback mechanism for critical scripts like Stripe.js to ensure uninterrupted protection
- Optional Content Security Policy (CSP) header management to further enhance security
- Service-based architecture following Drupal best practices
- Comprehensive logging and debugging capabilities
- Detailed status reporting in Drupal's status report

Post-Installation

1. Set a secure encryption key in your settings.php file:
$settings['nesguard_encryption_key'] = 'YOUR_SECURE_RANDOM_KEY_HERE';
2. Navigate to Administration > Configuration > System > NESGuard SRI Settings
3. Enter your NESGuard Agency Identifier and API Key
4. Enable the module to activate SRI protection
5. Optionally configure CSP settings if needed

The module will automatically fetch monitored script lists from your NESGuard account and apply SRI attributes to those scripts. The client-side JavaScript establishes a WebSocket connection to receive real-time hash updates.

Additional Requirements

- Drupal 9.4+ or Drupal 10+
- PHP 7.4 or higher
- PHP OpenSSL extension
- A NESGuard.cloud account with an active subscription
- Outbound HTTPS and WebSocket connections to nesguard.cloud

Recommended modules/libraries

No additional modules are required, though this module pairs well with security-focused modules like Security Review for a more comprehensive security posture.

Similar projects

While the Security Review module provides general security auditing, and CSP handles Content Security Policy, NESGuard is unique in providing specialized Subresource Integrity protection with real-time monitoring. It's specifically designed to protect against JavaScript supply chain attacks.

Supporting this Module

Development is supported by nesgaurd.com, a service dedicated to improving JavaScript security across the web.

Community Documentation

For detailed information on Subresource Integrity and why it's important for your site's security, visit nesgaurd.com or refer to the Mozilla Developer Network SRI documentation.

Activity

Total releases
2
First release
Mar 2025
Latest release
1 year ago
Release cadence
10 days
Stability
0% stable

Releases

Version Type Release date
10.1.x-dev Dev Apr 10, 2025
10.x-dev Dev Mar 31, 2025