shieldfy / API-Security-Checklist

Checklist of the most important security countermeasures when designing, testing, and releasing your API

Suggestion: Always set charset in response header

ngyikp opened this issue 7 years ago · comments

Ng Yik Phang commented 7 years ago

http://blog.portswigger.net/2016/11/json-hijacking-for-modern-web.html

Also contains other helpful hints too

Caleb Mazalevskis commented 2 years ago

Anyone want to create a PR for this?