Node.js security best practices

I think one of the most important things when we are building a backend its the security, so searching at internet I found this interesting post about how to secure our node apps, here I will leave you the link in case someone wants to know.

https://medium.com/@nodepractices/we...s-e33c146cb87d

They are all very generic. IMO if you depend on a list like this to give you good security, you shouldnt be coding something that requires good security.

Thanks mate

A good practice is also to use service has Code Climate or Codacity

Always check your inputs, which are provided from outside, e.g. CLI args, HTTP requests,...

I also can recommend using TypeScript and get rid of JS.
Even for smaller projects, it's always helpful.

Use ESLint as a plugin for VSCode to get notified about code-smells, which potentially introduce security flaws.

Like one said here, Security topics are very generic and not specifically to a programming language.
You can have a look at OWASP.

Node.js security best practices

Post a Reply

Similar Threads

Tags for this Thread