Secure Coding
Everything on SkillVeris tagged Secure Coding — collected across the glossary, study notes, blog, and cheat sheets.
5 resources across 1 library
Interview Questions(5)
What Techniques Prevent SQL Injection?
SQL injection is prevented primarily by using parameterized queries (or prepared statements) so user input is always bound as data and never concatenated into…
What Are Parameterized Queries and Why Do They Matter?
A parameterized query is a SQL statement written with placeholders in place of literal values, where the actual values are supplied separately and bound by the…
What is Content Security Policy (CSP)?
Content Security Policy (CSP) is an HTTP response header that tells the browser which sources of scripts, styles, images, and other resources are allowed to lo…
How Do CSP Nonces Prevent Inline Script Injection?
A CSP nonce is a random, single-use token the server generates per response and embeds both in the Content-Security-Policy header and as a nonce attribute on e…
What Is the Trusted Types API and How Does It Prevent DOM XSS?
The Trusted Types API is a browser-enforced mechanism, activated via a CSP directive, that blocks a page’s dangerous DOM sinks — like innerHTML or eval — from…