Middleware that applies security-related HTTP headers to an OWIN pipeline.
See OWASP List https://www.owasp.org/index.php/List_of_useful_HTTP_headers
CSP2 implementation according to: http://www.w3.org/TR/CSP2/
Support for Content Security Policy for ASP.NET applications.
New in version 1.0.10 - Full support for the 1.0 version of CSP. Includes some breaking config changes in preparation for the 1.0.
"options" is no longer available. The options have now been moved to allowedScriptSources...
Takes untrusted (X)HTML and massages it into real, trusted XHTML. While plenty of effort goes into preserving the original intent, markup validity and safety is the first priority. It's particularly useful with content management systems where users are in control of markup, but you want to target...
A sanitizer to remove elements and attributes from SGML based text files, such as HTML and XML. Note that this is a very simple implementation, but by using whitelists and a naïve URL detection implementation XSS may be prevented. Use at your own risk though.