/security-guide-for-developers

History for security-guide-for-developers/security-checklist.md
Commits on Feb 20, 2017
  1. @bungoume

    Update HSTS preload list submission url

    bungoume committed on GitHub Feb 20, 2017
    eb1c925
Commits on Aug 2, 2016
  1. @abhishek-anand

    Merge pull request #29 from TomCorwine/patch-1 

    Added information about iOS keychain
    abhishek-anand committed on GitHub Aug 2, 2016
    3
    1a7708e
  2. @abhishek-anand

    Merge pull request #22 from sijin/mention-ssh-keys 

    Minor edit to mention ssh keys
    abhishek-anand committed on GitHub Aug 2, 2016
    0e11536
Commits on Aug 1, 2016
  1. @TomCorwine

    Update security-checklist.md

    TomCorwine committed on GitHub Aug 1, 2016
    f21c08e
  2. @TomCorwine

    Update security-checklist.md

    TomCorwine committed on GitHub Aug 1, 2016
    7
    6349c86
Commits on Jul 31, 2016
  1. @TomCorwine

    Update security-checklist.md 

    Added additional security information for iOS storing of sensitive information.
    TomCorwine committed on GitHub Jul 31, 2016
    d6ba5c5
Commits on Jul 27, 2016
  1. @abhishek-anand

    Merge pull request #25 from intchloe/patch-2 

    Added require-sri-for
    abhishek-anand committed on GitHub Jul 27, 2016
    84b0f77
Commits on Jul 25, 2016
  1. @abhishek-anand

    Changed SQLi item to reflect prepared statement

    abhishek-anand committed on GitHub Jul 25, 2016
    279d108
  2. @abhishek-anand

    merging PR for removal of Cloudflare name

    abhishek-anand committed Jul 25, 2016
    249434f
Commits on Jul 23, 2016
  1. @Omeryl

    Remove redundant entry 

    This entry was already listed at the top, doesn't have a purpose twice.
    Omeryl committed on GitHub Jul 23, 2016
    ca8c129
  2. @intchloe

    Added require-sri-for

    intchloe committed on GitHub Jul 23, 2016
    ed079c2
Commits on Jul 22, 2016
  1. @mmattice

    Depreciate Cloudflare recommendation 

    CF MITMs TLS connections with their own certs so all of your data in transit is in the clear to them.
    mmattice committed on GitHub Jul 22, 2016
    7a05801
  2. @sijin

    Minor edit to mention ssh keys 

    Minor edit to mention ssh keys as alternative.
    sijin committed on GitHub Jul 22, 2016
    f250d96
  3. @abhishek-anand

    merging pr removing claim about Mongo

    abhishek-anand committed Jul 22, 2016
    cf4c28c
  4. @radarhere

    Fixed typos

    radarhere committed Jul 22, 2016
    594165f
  5. @abhishek-anand

    Merge pull request #11 from paulschreiber/patch-1 

    Added HSTS Preload list
    abhishek-anand committed on GitHub Jul 22, 2016
    ea51960
  6. @abhishek-anand

    Merge pull request #9 from intchloe/patch-1 

    Added about SameSite in CSRF-prevention
    abhishek-anand committed on GitHub Jul 22, 2016
    4b002af
  7. @paulschreiber

    Added HSTS Preload list

    paulschreiber committed on GitHub Jul 22, 2016
    d419339
  8. @Primigenus

    Remove unqualified claim about MongoDB 

    Unless you plan to explain why MongoDB sucks in the context of security, this statement does nothing to improve the document and instead just makes me suspect that the rest of the document includes similar claims with no backing. In which case, how am I to trust that this guide is dependable or trustworthy?
    Primigenus committed on GitHub Jul 22, 2016
    38ea992
Commits on Jul 21, 2016
  1. @intchloe

    Added about SameSite in CSRF-prevention

    intchloe committed on GitHub Jul 21, 2016
    0ecba4d
  2. @eryno

    Setup (noun) -> Set up (verb)

    eryno committed on GitHub Jul 21, 2016
    ba6daee
  3. @eryno

    Added periods for consistency, grammar editing

    eryno committed on GitHub Jul 21, 2016
    8edfbf4
  4. @eryno

    Fixed "JWT" run-on sentence

    eryno committed on GitHub Jul 21, 2016
    84b47e7
  5. @abhishek-anand

    Merge pull request #4 from arkadiyt/bcrypt-fix 

    Fix bcrypt checklist item
    abhishek-anand committed on GitHub Jul 21, 2016
    d44aace
  6. @abhishek-anand

    merge conflict fixed

    abhishek-anand committed Jul 21, 2016
    877cc81
Commits on Jul 20, 2016
  1. @mkagenius

    Merge pull request #3 from carlmlane/master 

    spell check on security checklist
    mkagenius committed on GitHub Jul 20, 2016
    6433639

  2. Fix bcrypt checklist item

    Arkadiy Tetelman committed Jul 20, 2016
    8ee723d
  3. @carlmlane

    spell check

    carlmlane committed Jul 20, 2016
    d1f714e
  4. @eryno

    Minor copyediting on security checklist 

    * Added links to a few named tools
* Reworded "javascript://, data://, CRLF characters" sanitation line because I wasn't sure what it meant as written
* Minor grammar updates
    eryno committed on GitHub Jul 20, 2016
    aec03ea
  5. @thijzert

    Fix typo

    thijzert committed on GitHub Jul 20, 2016
    4237ab7
Commits on Jul 19, 2016
  1. @mkagenius

    Added link to contents

    mkagenius committed on GitHub Jul 19, 2016
    cf7db39
  2. @abhishek-anand

    Create security-checklist.md

    abhishek-anand committed on GitHub Jul 19, 2016
    3691e7f