- >25% of Dutch government websites reuse nonces. "Not a security problem" ??? https://www.w3.org/TR/CSP3/#security-nonces 5 comments sysadmin
Linking pages
- New WebKit Features in Safari 15.4 | WebKit https://webkit.org/blog/12445/new-webkit-features-in-safari-15-4/ 434 comments
- April King — Handling Cookies is a Minefield https://grayduck.mn/2024/11/21/handling-cookies-is-a-minefield/ 253 comments
- Improving HTTP with structured header fields | Fastly https://www.fastly.com/blog/improve-http-structured-headers 14 comments
- A Brief History of Browser Extensibility | by Todd Schiller | Brick by Brick | Medium https://medium.com/brick-by-brick/a-brief-history-of-browser-extensibility-bcfeb4181c9a 7 comments
- Content security policy http://www.html5rocks.com/en/tutorials/security/content-security-policy/ 7 comments
- Fearless CORS: a design philosophy for CORS middleware libraries (and a Go implementation) :: jub0bs.com https://jub0bs.com/posts/2023-02-08-fearless-cors/ 5 comments
- Content Security Policy - protect your website from XSS attacks | itsopensource https://itsopensource.com/content-security-policy/ 3 comments
- GitHub - grempe/rack-content_security_policy: Rack middleware for sending the HTTP ContentSecurityPolicy (W3C CSP Level 2/3) security headers in responses to prevent XSS and other browser based attacks. https://github.com/grempe/rack-content_security_policy 3 comments
- Mitigate cross-site scripting (XSS) with a strict Content Security Policy (CSP) https://web.dev/strict-csp/ 2 comments
- Content Security Policy - protect your website from XSS attacks https://championshuttler.in/content-security-policy-protect-your-website-from-xss-attacks 1 comment
- Finding and Fixing DOM-based XSS with Static Analysis – Attack & Defense https://blog.mozilla.org/attack-and-defense/2021/11/03/finding-and-fixing-dom-based-xss-with-static-analysis/ 1 comment
- Contributing Improved Security to JavaMelody with Content Security Policy – Craig Andrews https://candrews.integralblue.com/2021/08/contributing-improved-security-to-javamelody-with-content-security-policy/ 1 comment
- Abusing Slack's file-sharing functionality to de-anonymise fellow workspace members :: jub0bs.com https://jub0bs.com/posts/2021-10-12-xsleak-stack/ 0 comments
- A Brief History of Browser Extensibility https://www.pixiebrix.com/blog/a-brief-history-of-browser-extensibility/ 0 comments
- Integrating Content Security Policy into your Rails applications - Sqreen Blog https://blog.sqreen.io/integrating-content-security-policy-into-your-rails-applications-4f883eed8f45 0 comments
- Content Security Policies https://frontendian.co/csp 0 comments
- Content Security Policy violation inconsistencies across browsers · mmazzarolo.com https://mmazzarolo.com/blog/2021-05-30-browser-specific-format-for-csp-violations/ 0 comments
Related searches:
Search whole site: site:w3.org
Search title: Content Security Policy Level 3
See how to search.