Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Addition to API Security checklist #8087

Open
fhuadeen opened this issue Jan 21, 2025 · 1 comment
Open

Addition to API Security checklist #8087

fhuadeen opened this issue Jan 21, 2025 · 1 comment
Labels
topic-change Missing or deprecated topics in roadmap

Comments

@fhuadeen
Copy link

Roadmap URL

https://roadmap.sh/best-practices/api-security

Suggestions

  1. Block Disallowed Origin especially for web. This makes sure to only allow requests from trusted URLs.
  2. Only allow requests with trusted host. This enforcement guards against HTTP Host Header attacks.
@fhuadeen fhuadeen added the topic-change Missing or deprecated topics in roadmap label Jan 21, 2025
@github-actions GitHub Actions
Copy link
Contributor

🙌 Hello! Thank you for taking the time to file an issue.

If this is a bug report, please include any relevant logs or details that can help us debug the problem. Your help is greatly appreciated! 💡

We'll get back to you as soon as possible, kindly be patient for a response from a maintainer.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
topic-change Missing or deprecated topics in roadmap
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@fhuadeen