Web security content needed

There’s some great resources on MDN for learning how to build websites including the sections for accessability.

I’d love to see some more structured resources for security best practices and am wondering if anyone wants to join me to start something?

We have a bunch of general web security stuff at https://developer.mozilla.org/en-US/docs/Web/Security.

And some more specific server-side considerations at https://developer.mozilla.org/en-US/docs/Learn/Server-side/First_steps/Website_security

I’m assuming you are talking about more beginner’s content? I think the reason we haven’t looked at this in earnest is that it is hard to think about what content would most benefit beginners.

Through the learning area, all the content is written with explicit best practies in mind for security, for example not recommending eval(), and using textContent rather than innerHTML.

But I’d be interested in hearing your thoughts about what we could add specifically WRT to security.

Also, Hi! Welcome! And thanks for your interest in contributing to MDN!