#content-security-policy

[ follow ]
#entra-id #django-60 #background-tasks #python-compatibility #xss-mitigation #authentication-security
fromInfoQ
2 weeks ago

Django Releases Version 6.0 with Built-In Background Tasks and Native CSP Support

Django, the Python web framework, has released Django 6.0, delivering a collection of developer-focused features, security enhancements, and performance improvements aimed at modernizing web application development. Django 6.0 introduces several major features, including a built-in background tasks framework, native Content Security Policy support, template partials for component-based development, and adoption of Python's modern email API. The release also includes support for Python 3.12, 3.13, and 3.14, while dropping support for Python 3.10 and 3.11.
Web frameworks
#entra-id
fromThe Hacker News
2 months ago
Information security

Microsoft to Block Unauthorized Scripts in Entra ID Logins with 2026 CSP Update

Entra ID sign-ins will restrict scripts to trusted Microsoft domains via updated CSP, blocking injected code and preventing XSS starting October 2026.
fromTechzine Global
2 months ago
Information security

Microsoft Entra protects against script injection attacks

Microsoft will enforce a Content Security Policy for Entra ID sign-ins in October 2026, blocking injected scripts and requiring alternatives to code-injecting extensions.
more#entra-id
[ Load more ]