Home Security & Privacy Rust Web Security

Rust Web Security Cheat Sheet

Headers, CSP, and secure cookies

Last Updated: November 21, 2025

Headers

Header Purpose
Strict-Transport-Security Force TLS
Content-Security-Policy Block scripts
X-Content-Type-Options Prevent sniffing

Commands

axum::middleware
Add headers
cookie::Cookie::build
Set httpOnly
rocket::fairing
Apply CSP

Guidance

Validate inputs, sanitize templates, and audit standards.

Related Cheat Sheets

Vault Secrets Engines

Enable engines, generate dynamic credentials, and renew leases

Incident Response

Declare incidents, contain, communicate, and learn

Node.js Security

Audit dependencies, configure CSP, and lock env variables

Passwordless Authentication

Deploy magic links, WebAuthn passkeys, and OTP flows

💡 Pro Tip: Use HTTPS, set CSP, and mark cookies httpOnly.

Related Cheat Sheets

Browse all Security & Privacy →

← Back to Security & Privacy | Browse all categories | View all cheat sheets