nodejs/nodebestpractices
1
0
Fork 0
mirror of https://github.com/goldbergyoni/nodebestpractices.git synced 2025-10-28 03:25:55 +08:00
Code Issues Packages Projects Releases Wiki Activity
3,524 Commits 98 Branches 0 Tags
Commit Graph

275 Commits

Author SHA1 Message Date
Alexander Ivanov
a727002545 login-rate-limit 
Signed-off-by: Alexander Ivanov <oshli.a.er@gmail.com>
 2019-07-23 09:41:01 +03:00
Alexander Ivanov
4731e63e71 lintrules 
Signed-off-by: Alexander Ivanov <oshli.a.er@gmail.com>
 2019-07-23 09:26:47 +03:00
Alexander Ivanov
e50eea8990 limitrequests 
Signed-off-by: Alexander Ivanov <oshli.a.er@gmail.com>
 2019-07-23 09:17:19 +03:00
Alexander Ivanov
6d607e754b hideerrors 
Signed-off-by: Alexander Ivanov <oshli.a.er@gmail.com>
 2019-07-23 09:09:07 +03:00
Alexander Ivanov
c02664c12a expirejwt.russian 
Signed-off-by: Alexander Ivanov <oshli.a.er@gmail.com>
 2019-07-23 09:02:25 +03:00
Alexander Ivanov
85fe011953 safemoduleloading 
Signed-off-by: Alexander Ivanov <oshli.a.er@gmail.com>
 2019-07-23 08:54:38 +03:00
Alexander Ivanov
9e1a645018 escape-output 
Signed-off-by: Alexander Ivanov <oshli.a.er@gmail.com>
 2019-07-23 08:48:48 +03:00
Alexander Ivanov
651eb803f1 dependencysecurity 
Signed-off-by: Alexander Ivanov <oshli.a.er@gmail.com>
 2019-07-23 08:32:18 +03:00
Alexander Ivanov
c1189d23ce commonsecuritybestpractices 
Signed-off-by: Alexander Ivanov <oshli.a.er@gmail.com>
 2019-07-23 08:18:35 +03:00
Alexander Ivanov
121ea0ca57 childprocesses 
Signed-off-by: Alexander Ivanov <oshli.a.er@gmail.com>
 2019-07-22 23:04:22 +03:00
Alexander Ivanov
1bc4c498e7 bcryptpasswords 
Signed-off-by: Alexander Ivanov <oshli.a.er@gmail.com>
 2019-07-22 22:55:22 +03:00
Alexander Ivanov
293d0ba309 avoideval 
Signed-off-by: Alexander Ivanov <oshli.a.er@gmail.com>
 2019-07-22 22:43:06 +03:00
Fredrik Seidl
e58b851fb3 Fix typo in sandbox.brazilian-portuguese.md 2019-06-11 08:34:28 +02:00
Fredrik Seidl
7abed018cf Fix typo in sandbox.chinese.md 2019-06-11 08:33:54 +02:00
Fredrik Seidl
063e11e3bc Fix typo 
Spotted a typo in sandbox.md
 2019-06-10 22:29:07 +02:00
Kyle Martin
88776b9641 Add note about express-jwt-blacklist 2019-06-06 17:58:46 +12:00
Douglas Mariano Valero
c6ee89dd4d Updated BR version to keep up with the main version 2019-05-09 10:47:20 -03:00
Kyle Martin
a1abdc2f8d Merge pull request #397 from animir/patch-3 
6.12 add code example
 2019-05-06 18:00:21 +12:00
Kyle Martin
5307baa1d5 Merge pull request #308 from animir/change-6-2-example 
Update 6.2 tldr and add common example
 2019-05-06 17:47:41 +12:00
Roman
2020814910 6.12 add code example 2019-05-06 15:21:17 +10:00
Kyle Martin
825a1dc2a1 Update sections/security/limitrequests.md 
Codestyle fix

Co-Authored-By: animir <animir@ya.ru>
 2019-05-06 15:12:18 +10:00
Kyle Martin
71e9eacc6b Update sections/security/limitrequests.md 
Codestyle fix

Co-Authored-By: animir <animir@ya.ru>
 2019-05-06 15:12:04 +10:00
Kyle Martin
0e91b4ca30 Update sections/security/limitrequests.md 
Fix Node.js name

Co-Authored-By: animir <animir@ya.ru>
 2019-05-06 15:11:45 +10:00
Kyle Martin
e9fc0fe42b Update sections/security/limitrequests.md 
Extra space removed

Co-Authored-By: animir <animir@ya.ru>
 2019-05-06 15:11:26 +10:00
Invvard
935744eb6d Update the URL link 
The previous landing page informed user to go to the GitHub where the cheatsheet has been moved to
 2019-04-12 13:20:03 -04:00
Roman
987a0221c7 6.2 simplify and add a link to more examples 2019-04-12 10:19:33 +09:00
Kyle Martin
7eff9f57fb add dryrun detail 2019-04-05 14:23:14 +13:00
Kyle Martin
963c0b860c Add npm blog 2019-04-05 14:20:37 +13:00
Kyle Martin
537b4bf83d indent 2019-04-05 14:12:51 +13:00
Kyle Martin
0dff8842ef New BP 6.25 avoid publishing secrets to npm 2019-04-05 14:09:41 +13:00
Roman
643edb183d 6.12 Improve title and remove non-maintained package example 2019-03-26 20:36:53 +10:00
Roman
c3388500c2 Merge branch 'master' into change-6-2-example 2019-03-24 13:41:19 +10:00
DouglasMV
5f27dcdd24 Translated Section 6 (#361) 
* translated lint rules

* translated limit requests

* translated secret management

* translated ORM ODM usage

* translated secure server

* translated commum security best pratices

* translated secure headers

* translated dependency security

* translated bcrypt passwords

* translated escape output

* translated validation

* translated expire jwt

* translated login rate limit

* translated non root user

* translated request payload size limit

* translated avoid eval

* translated regex

* translated safe module loading

* translated sandbox

* translated child processes

* translated hide errors

* translated sessions

* translated safe redirects

* changed links to tranlated files & fixed a typo

* translated ESlint and Prettier

* translated native over util

* translated refactoring

* translated ci tools

* translated 3 parts in name

* translated monitoring

* translated smart logging

* translated delegate to proxy

* translated lock dependencies

* translated guard process

* translated utilize cpu

* translated create maintenance endpoint

* translated apm products

* translated production code

* translated measure memory

* translated frontend out

* translated be stateless

* translated detect vulnerabilities

* translated assign transation ID

* translated set NODE_ENV

* translated LTS release

* translated log rounting

* translated break into components

* translated create layers

* translated wrap utilities

* translated separate express

* translated config guide

* corrected typos and updated anchors

* corrected files names
 2019-03-19 12:52:46 +05:30
Sagir Khan
f0670e0e81 Merge BR translation into master (#351) 
Merge BR translation into master, finally!

Please turn on the `No Whitespace` option during review.

![image](https://user-images.githubusercontent.com/2608321/53858802-7dba0a00-4001-11e9-998b-3506e012b357.png)

/cc @marcelosdm 

Closes: https://github.com/i0natan/nodebestpractices/issues/223
 2019-03-10 12:31:22 +05:30
Lewis
78004e199f update httpOnly 
Technically its HttpOnly, so i updated to reflect that.
 2019-02-26 13:40:30 -08:00
Lewis
637523810d Updates to commonsecuritybestpractices.md 
Did not like that OWASP A7 only included 'use CSP, so updated that to reference more content from OWASP with some slight changes to reflect node, e.g use a template engine.

Made some slight changes to the content for grammar improvements
 2019-02-25 15:11:31 -08:00
Lewis
807fe9dea8 Slight changes 
Suggested changes from comments
 2019-02-22 08:26:25 -08:00
Lewis
a1477e4a09 Grammar improvements to secureserver.md 
I read this page and saw a few grammar improvements, hopefully you like them.
 2019-02-21 17:06:02 -08:00
Lewis
830907a958 Include new Function within avoideval.md 
Dynamic execution of JavaScript also happens in new Function, which is even referenced here: https://github.com/i0natan/nodebestpractices#-615-avoid-javascript-eval-statements, so this should be included.
 2019-02-20 07:40:20 -08:00
Teddy Toussaint
67e7c3b49c Typo fix 2019-02-14 17:10:50 +01:00
迷渡
cd5c872bc5 fix npm link 2019-01-01 21:03:19 +08:00
Roman
0d77cda005 Update limitrequests.md 
Add common example, which is suitable for any framework or pure NodeJS
 2018-12-27 21:41:55 +08:00
Joe Reeve
e3df62ba85 🎉 Improved output, added image compression, added code highlighting, inlined all resources 2018-12-07 16:54:19 +01:00
Dávid Szabó
9b8c017526 Change name order 2018-11-16 16:24:18 +01:00
Dávid Szabó
11ec931a7d Fix name typo 2018-11-16 12:24:00 +01:00
Matt Jin
19d1047875 Merge pull request #275 from MattJin/master 
[Chinese translation]Some translations on Security part
 2018-11-14 13:43:19 +08:00
Matt Jin
57597d8b04 Merge pull request #280 from blackmatch/chinese-limitrequests 
[chinese translation] add 6.2
 2018-11-14 13:43:01 +08:00
Matt Jin
46a2739cf6 [Chinese translation]remove no-used lines 2018-11-13 15:01:59 +08:00
blackmatch
1a95738ae7 correct some sentences 2018-11-13 11:47:11 +08:00
blackmatch
5a666332b9 [chinese translation] add 6.2 2018-11-12 21:59:33 +08:00