CraftQuest on Call: Craft 5.4 and CSPs

Name: Mijingo, LLC
Price range: $

We covered the new features in Craft 5.4 and then dived into the fundamentals of a Content Security Policy, and how you can set one up as a first level of defense against cross-site scripting attack attempts.

Craft 5

Craft CMS Security

We are live on the first and third Thursday of every month at 12 Noon Eastern. Have a question you’d like us to answer on-air? Send it over!

Lesson Materials

Some stuff to help you along during the lesson:

Craft 5.4.0 release notes

Content-Security-Policy (CSP)

What is cross-site scripting (XSS) and how to prevent it?

CSP Evaluator

CSP Evaluator Chrome Extension

Definition of nonce

Cryptographic nonce

Craft CMS Vite Plugin

More you should learn about Craft CMS

CraftQuest on Call: Craft 5.4 and CSPs

What's New in Craft 5.3

What's Coming in Craft 5.3?

CraftQuest on Call: History of Craft CMS

Real World Craft CMS

Craft CMS 5 Quick-Start Guide

CraftQuest on Call 85: Craft 5 Live

Craft CMS 5 Guide

Longform Content with CKEditor