Discover
Magazine
TalentCompaniesFor Business
Sign in Join Us Join Us
How Content Security Policy will save us all from XSS
Playlist
Back-end • December 2021
How Content Security Policy will save us all from XSS
Anton Kazakov
Engineering Manager • Westwing
Thomas Südbröcker
Get started to deploy a Java microservices application to a serverless framework
Maurice de Beijer
React Hooks Tips Only the Pros Know
Michael Hunger
All API, No Boilerplate - Building Secure GraphQL APIs Powered by a Graph Database
Sachin Sharma
Thinking outside of the Euclidean Space: An introduction study to Graph Machine Learning and its Applications
Gustavo Soares, Rainer Collet
Set up an experimentation culture empowering teams to create measurable business value
Matthias Haeussler
Options Galore to Get from Source Code to Container
Antonia Forster
Closing the Gender Gap in Tech
Adam Bien
Java in the Clouds: From Monoliths to Serverless #slideless
Hugh McKee
From Stateless-Serverful to Stateful-Serverless
Sven Ruppert
The SolarWinds Hack and the Executive Order on Cybersecurity happened - It is time to prepare
Itai Yaffe, Yakir Buskilla
Casting the spell: Druid in practice
Dianing Yudono
What backend tests can learn from frontend tests
Marco Moschettini
How to establish peer-to-peer connections across NATs: a benchmark of existing NAT hole punching techniques
Anastasija Efremovska
Know thy ~enemy~ (k8s) choice of controller
Arie van Bennekum
Agile for the business, omg
Nina de Leeuw
Focus ON/OFF
Carlo Lucera
What is BLoC
Xavier Portilla Edo
DevOps in Voice Apps
Olaf de Leeuw
Towards more energy-efficient Neural Networks? Use your brain!
Facundo Giuliani
How to View and React without a Head
Currently playing
Anton Kazakov
How Content Security Policy will save us all from XSS
Charlie Gerard
Building brain-controlled interfaces in JavaScript
Cassie Evans
Keep Scrolling
Denis Rothman
Are you an Industry 4.0 AI Developer?
Luciano Mammino
A look inside the European Covid Green Pass
Jennifer Reif, Mark Heckler
Pouring Coffee into the Matrix - Building Java Applications on Neo4j
Erez Berkner
Observability across serverless asynchronous managed services
Andres Almiray
Releasing at the speed of light
David Gómez G.
Building monolith applications that could scale to microservices (only if they need to)
Anna Burundukova
How to automate testing in Automotive?
Anthony Viard
The future is composable
Agnieszka Walorska
Why you should design for the MVP - the Most Vulnerable Person
Martin Woolley
How to do stuff with Bluetooth technology
Elena Poughia, Jessica Dittmar
Wasn't it actually the job of the tech community to kick data collectors out of our bedroom?
Hunter Weinsheink
DevSuccess Joins the Developer Dynasty
Ed Shee
Tackling the massive complexity of production Machine Learning
Joel Lord
IoT, JavaScript and Beer Brewing: Cheers to that!
William Lyon
Putting the Graph In GraphQL With The Neo4j GraphQL Library
Natan Silnitsky
Advanced Caching Patterns used by 2000 microservices
Mattia Tommasone
Saga pattern: managing transactions between microservices
Piet van Dongen
Seriously gaming your cloud expertise: from cloud tourist to cloud native
Natale Vinto, Fabio Di Vita
ML Workflows and Delivery of AI-Powered Intelligent Applications with OpenShift Data Science
Eberhard Wolff
Domain-driven Design & Legacy: Evolution not Revolution
Raffaele Rialdi
Easing the rough edges of distributed computing with Semantic Driven Modeling
Joep Kokkeler
Be safer on a bike, using an xbox kinect!
Daniel Holt
Distributed Databases on Kubernetes
m4dz -
Design Systems of a Down: Steal this Guide!
Enrique Catalá Bañuls
Applied Deep Learning state-of-the-art
Vincent Warmerdam
Optimal on Paper; Broken in Reality
Laurens Koppenol, David Isaacs Paternostro
Exploring the Rimworld of Sound using Generative Adversarial Networks
Back-end • December 2021
How Content Security Policy will save us all from XSS
Thomas Südbröcker
Get started to deploy a Java microservices application to a serverless framework
Maurice de Beijer
React Hooks Tips Only the Pros Know
Michael Hunger
All API, No Boilerplate - Building Secure GraphQL APIs Powered by a Graph Database
Sachin Sharma
Thinking outside of the Euclidean Space: An introduction study to Graph Machine Learning and its Applications
Gustavo Soares, Rainer Collet
Set up an experimentation culture empowering teams to create measurable business value
Matthias Haeussler
Options Galore to Get from Source Code to Container
Antonia Forster
Closing the Gender Gap in Tech
Adam Bien
Java in the Clouds: From Monoliths to Serverless #slideless
Hugh McKee
From Stateless-Serverful to Stateful-Serverless
Sven Ruppert
The SolarWinds Hack and the Executive Order on Cybersecurity happened - It is time to prepare
Itai Yaffe, Yakir Buskilla
Casting the spell: Druid in practice
Dianing Yudono
What backend tests can learn from frontend tests
Marco Moschettini
How to establish peer-to-peer connections across NATs: a benchmark of existing NAT hole punching techniques
Anastasija Efremovska
Know thy ~enemy~ (k8s) choice of controller
Arie van Bennekum
Agile for the business, omg
Nina de Leeuw
Focus ON/OFF
Carlo Lucera
What is BLoC
Xavier Portilla Edo
DevOps in Voice Apps
Olaf de Leeuw
Towards more energy-efficient Neural Networks? Use your brain!
Facundo Giuliani
How to View and React without a Head
Anton Kazakov
How Content Security Policy will save us all from XSS
Charlie Gerard
Building brain-controlled interfaces in JavaScript
Cassie Evans
Keep Scrolling
Denis Rothman
Are you an Industry 4.0 AI Developer?
Luciano Mammino
A look inside the European Covid Green Pass
Jennifer Reif, Mark Heckler
Pouring Coffee into the Matrix - Building Java Applications on Neo4j
Erez Berkner
Observability across serverless asynchronous managed services
Andres Almiray
Releasing at the speed of light
David Gómez G.
Building monolith applications that could scale to microservices (only if they need to)
Anna Burundukova
How to automate testing in Automotive?
Anthony Viard
The future is composable
Agnieszka Walorska
Why you should design for the MVP - the Most Vulnerable Person
Martin Woolley
How to do stuff with Bluetooth technology
Elena Poughia, Jessica Dittmar
Wasn't it actually the job of the tech community to kick data collectors out of our bedroom?
Hunter Weinsheink
DevSuccess Joins the Developer Dynasty
Ed Shee
Tackling the massive complexity of production Machine Learning
Joel Lord
IoT, JavaScript and Beer Brewing: Cheers to that!
William Lyon
Putting the Graph In GraphQL With The Neo4j GraphQL Library
Natan Silnitsky
Advanced Caching Patterns used by 2000 microservices
Mattia Tommasone
Saga pattern: managing transactions between microservices
Piet van Dongen
Seriously gaming your cloud expertise: from cloud tourist to cloud native
Natale Vinto, Fabio Di Vita
ML Workflows and Delivery of AI-Powered Intelligent Applications with OpenShift Data Science
Eberhard Wolff
Domain-driven Design & Legacy: Evolution not Revolution
Raffaele Rialdi
Easing the rough edges of distributed computing with Semantic Driven Modeling
Joep Kokkeler
Be safer on a bike, using an xbox kinect!
Daniel Holt
Distributed Databases on Kubernetes
m4dz -
Design Systems of a Down: Steal this Guide!
Enrique Catalá Bañuls
Applied Deep Learning state-of-the-art
Vincent Warmerdam
Optimal on Paper; Broken in Reality
Laurens Koppenol, David Isaacs Paternostro
Exploring the Rimworld of Sound using Generative Adversarial Networks
About
How Content Security Policy will save us all from XSS
About

What if we could stop worrying about XSS vulnerabilities once and for all? What if we could just build our apps without having to think about the user content trying to execute malicious code on our website stealing our customers' payment data or even stealing access to some admin areas and potentially delivering even more damage?
Well, Content Security Policy can provide us with that. We'll take a look at what it is, at its stable features, experimental features and examples of what it can look like on a large website.

Language
English
Level
Intermediate
Length
32 minutes
Type
online conference
About the speaker
About the speaker
Anton Kazakov
Engineering ManagerWestwing
A software engineer and an engineering manager with passion for perfection. I love good code and can read it as a book. If it reads as a book. If it doesn't I'll rewrite it and read as a book.
Details
Language
English
Level
Intermediate
Length
32 minutes
Type
online conference
Related tags
Related tags
Back-end Cybersecurity Web App Demo Vulnerability XSS