Skip to content

Security - XSS validation in Posts #150

New issue
New issue
Open
Open
Security - XSS validation in Posts#150
Labels
criticalDangerous, needs attention asap
@weaponsforge

Description

@weaponsforge
weaponsforge
opened on Sep 28, 2024
  • Check Firebase-only solutions (Firestore Rules) for validating XSS attacks when creating/editing Posts
  • Other possible solutions are:
    • do server-side validation outside Firebase (i.e., Node or PHP backend)
    • use Markdown in Posts, and allow only Markdown content to allow simpler Firebase-only validation: #135

Metadata

Metadata

Assignees

No one assigned

    Labels

    criticalDangerous, needs attention asap

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions