Include content security policy section on security guide

18F / frontend

18F's Front End Guild – content has been moved to https://github.com/18F/development-guide

Other

120 stars 29 forks source link

Include content security policy section on security guide #177

Closed msecret closed 6 years ago

msecret commented 7 years ago

In order for 18F developers to have a practical understanding of what content security policy is and how to use it, there should be a section in the security guide about it.

It should:

[x] Either include a link to information about content security policy, or written information
[x] The guidance should include practical examples and information on how a team can actually continue this practice on a real team, including tools to use.
[ ] The link should be reviewed by 18F security lead

el-mapache commented 7 years ago

PR here and ready for review!

xtine commented 6 years ago

@el-mapache: has the CSP section reviewed by a security lead yet?

xtine commented 6 years ago

Closing as CSP section exists now