9. Preventing Cross Site Scripting Vulnerabilities

• 9.1. Preventing Cross Site Scripting Vulnerabilities
  • 9.1.1. Philosophy and General Rules
  • 9.1.2. Types of Context and Escaping
  • 9.1.3. Editing Template Files
  • 9.1.4. Making Legacy Mako Templates Safe by Default
  • 9.1.5. XSS Linter
  • 9.1.6. Advanced Topics
  • 9.1.7. Additional Resources
• 9.2. Preventing XSS by Stripping HTML Tags
  • 9.2.1. Overview
  • 9.2.2. Mako filters for bleaching
  • 9.2.3. Strip all HTML tags
  • 9.2.4. Strip all but safe HTML tags
• 9.3. Preventing XSS in Django Templates
  • 9.3.1. HTML-escaping Translations in Django Templates
• 9.4. Preventing XSS in React

---

Feedback