3.9.3 Secure Input Handling
• Comments, channel chat messages, posts—anything user-generated must be sanitized (HTML escapes, etc.) to prevent XSS.
• Rate limiting on chat or posting endpoints to reduce spam or DDoS vectors.
Last updated
• Comments, channel chat messages, posts—anything user-generated must be sanitized (HTML escapes, etc.) to prevent XSS.
• Rate limiting on chat or posting endpoints to reduce spam or DDoS vectors.
Last updated