10 May 2019
Nonce-based Content Security Policy (CSP) in Rails
Introduction During my time at Gusto as a part of the Application Security team, I’ve been exploring ways to improve defense against Cross-Site Scripting (XSS) [https://www.owasp.org/index.php/Cross-site_Scripting_(XSS)] in modern web