DEV Community


Discussion on: Net Core security - NWebSec to the rescue!

dotnetcoreblog profile image

Interesting stuff.

I have some ASP NET Core middleware which does this, too (great minds and all that). The entire thing is open source and available at GitHub. It even has a default builder which will supply the recommended header values.

Interestingly, I would avoid HPKP as it has been deprecated