NWebsec.AspNetCore.Core 3.0.1 / NWebsec.Core 3.0.1

This release fixes a subtle bug:

• Fix csp scheme match regex #163

Go get the new versions on NuGet!

ASP.Net Core:

• NWebsec.AspNetCore.Middleware
• NWebsec.AspNetCore.Mvc
• NWebsec.AspNetCore.Mvc.TagHelpers

ASP.NET 4:

• NWebsec
• NWebsec.Mvc
• NWebsec.Owin

Check out the Documentation to learn how it works.

NWebsec.AspNetCore 3.0 / NWebsec 6.0 / NWebsec.Owin 4.0

This release adds the following new features and improvements:

• Target ASP.NET Core 3.1 #150 #105
• 144-bit CSP nonces #130
• Fix CSP FilterAttribute inheritance #142
• Remove HPKP #157

Go get the new versions on NuGet!

ASP.Net Core:

• NWebsec.AspNetCore.Middleware
• NWebsec.AspNetCore.Mvc
• NWebsec.AspNetCore.Mvc.TagHelpers

ASP.NET 4:

• NWebsec
• NWebsec.Mvc
• NWebsec.Owin

Check out the Documentation to learn how it works.

NWebsec 5.1.1

This release fixes a glitch in the configuration validation, reported in #125.

Go get the new versions on NuGet!

ASP.NET 4:

• NWebsec
• NWebsec.Mvc

Check out the Documentation to learn how it works.

NWebsec.AspNetCore 2.0 / NWebsec 5.1 / NWebsec.Owin 3.1

This release adds the following new features:

• CSP hash sources #100
• The CSP worker-src directive #122

Go get the new versions on NuGet!

ASP.Net Core:

• NWebsec.AspNetCore.Middleware
• NWebsec.AspNetCore.Mvc
• NWebsec.AspNetCore.Mvc.TagHelpers

ASP.NET 4:

• NWebsec
• NWebsec.Mvc
• NWebsec.Owin

Check out the Documentation to learn how it works.

NWebsec 5.0.0 / NWebsec.Owin 3.0.0

This release adds the following new features (for "classic ASP.NET"):

• The Referrer-Policy header #118
• The CSP strict-dynamic directive #98

This brings the "old" NWebsec packages up to par with the AspNetCore ones, and also drops support for .NET < 4.5.

Go get the new versions on NuGet!

https://nuget.org/packages/NWebsec/
https://nuget.org/packages/NWebsec.Mvc/
http://nuget.org/packages/NWebsec.Owin/

Check out the Documentation to learn how it works.

NWebsec.AspNetCore 1.1.0

This release adds the following new features:

• Support Referrer-Policy header #90
• Support CSP 'strict-dynamic' directive #95

Go get the new versions on NuGet!

https://nuget.org/packages/NWebsec.AspNetCore.Middleware/
https://nuget.org/packages/NWebsec.AspNetCore.Mvc/
http://nuget.org/packages/NWebsec.AspNetCore.Mvc.TagHelpers/

Check out the Documentation to learn how it works.

NWebsec.AspNetCore 1.0.0

This release adds the following new features:

• Support ASP.NET Core #59

Go get the new versions on NuGet!

https://nuget.org/packages/NWebsec.AspNetCore.Middleware/
https://nuget.org/packages/NWebsec.AspNetCore.Mvc/
http://nuget.org/packages/NWebsec.AspNetCore.Mvc.TagHelpers/

Check out the Documentation to learn how it works.

NWebsec 4.3.0 / NWebsec.Owin 2.3.0

This release adds the following new features (for "classic ASP.NET"):

• The CSP manifest-src directive #91
• The CSP block-all-mixed-content directive #69
• New CSP sandbox directive flags #77
• A few other bugfixes/improvements #86

Go get the new versions on NuGet!

https://nuget.org/packages/NWebsec/
https://nuget.org/packages/NWebsec.Mvc/
http://nuget.org/packages/NWebsec.Owin/

Check out the Documentation to learn how it works.

NWebsec 4.2.0 / NWebsec.Owin 2.2.0

This release adds the following new features:

• Support for the Referrer Policy meta tag #62
• The CSP upgrade-insecure-requests directive #68
• A few other bugfixes/improvements #70 #60

Go get the new versions on NuGet!

https://nuget.org/packages/NWebsec/
https://nuget.org/packages/NWebsec.Mvc/
http://nuget.org/packages/NWebsec.Owin/

Check out the Documentation to learn how it works.

NWebsec 4.1.1 / NWebsec.Owin 2.1.1

This release adds the following new features:

• Support for the Public Key Pinning (HPKP) header #49
• The CSP 2 plugin-types directive #53
• A few other bugfixes/improvements #52 #58 #61

Go get the new versions on NuGet!

https://nuget.org/packages/NWebsec/
https://nuget.org/packages/NWebsec.Mvc/
http://nuget.org/packages/NWebsec.Owin/

Check out the Documentation to learn how it works.