Check the API Security Checklist Project (#91)

- https://github.com/wearehive/project-guidelines/issues/74 - https://github.com/shieldfy/API-Security-Checklist
2017-09-02 14:44:18 +02:00 · 2017-09-02 14:44:18 +02:00 · 35c88d2a92
commit 35c88d2a92
parent 63c23bac89
1 changed files with 1 additions and 0 deletions
--- a/README.md
+++ b/README.md
@ -713,6 +713,7 @@ These are some basic security best practices:
    _Why:_
    > For instance, accepting the `application/x-www-form-urlencoded` mime type allows the attacker to create a form and trigger a simple POST request. The server should never assume the Content-Type. A lack of Content-Type header or an unexpected Content-Type header should result in the server rejecting the content with a `4XX` response.

+* Check the API Security Checklist Project. [read more...](https://github.com/shieldfy/API-Security-Checklist)

 <a name="api-documentation"></a>
 ### 9.3 API documentation