Scott Helme offers insights into web security, HTTPS adoption, and best practices for securing online services, providing articles, workshops, and security tools to help organizations protect against cyber threats. By exploring Scott Helme's curated content, developers can learn about HTTP security headers, Content Security Policy (CSP), and TLS encryption for securing web applications and APIs. Whether you're a web developer, sysadmin, or security professional, Scott Helme offers resources to enhance your cybersecurity knowledge and defend against common vulnerabilities.

Scott Helme

Report URI's team shares real-world examples of security issues they discovered on their own platform by using their own monitoring tools. They found scripts missing Subresource Integrity (SRI) protection through Integrity Policy monitoring, including one with a typo in the integrity attribute. Content Security Policy (CSP) helped them catch development mistakes like hardcoded test domain URLs in production. The experience demonstrates how security monitoring tools provide confidence by either finding actual problems or confirming their absence.

Eating Our Own Dogfood: What Running Report URI on Report URI Taught Us