CraftQuest on Call: Craft 5.4 and CSPs

Name: Mijingo, LLC
Price range: $

We covered the new features in Craft 5.4 and then dived into the fundamentals of a Content Security Policy, and how you can set one up as a first level of defense against cross-site scripting attack attempts.

Craft 5

Craft CMS Security

We are live on the first and third Thursday of every month at 12 Noon Eastern. Have a question you’d like us to answer on-air? Send it over!

Lesson Materials

Some stuff to help you along during the lesson:

Craft 5.4.0 release notes

Content-Security-Policy (CSP)

What is cross-site scripting (XSS) and how to prevent it?

CSP Evaluator

CSP Evaluator Chrome Extension

Definition of nonce

Cryptographic nonce

Craft CMS Vite Plugin

More you should learn about Craft CMS

CraftQuest on Call: Craft 5.4 and CSPs

What's Coming in Craft 5.5

CraftQuest on Call 98: What's Coming in Craft 5.5

CraftQuest on Call: External Databases

Connecting to External Databases in Craft CMS

Real World Craft CMS 5 Upgrade

CraftQuest on Call: Upgrading to Craft 5

What's New in Craft 5.3

What's Coming in Craft 5.3?