Security Considerations
DevExpress .NET controls include mechanisms designed to reduce security-related risks. Use the following features to improve the overall security posture of your DevExpress-powered ASP.NET Core app:
- Safe Deserialization
- Content Security Policy
- Encode CSV Files to Reduce CSV Injection Risks
- Prevent Cross-Site Scripting (XSS) Attacks
- Suppress Control Requests to Download Data from External URLs
General Information
The following document addresses a series of frequently asked security-related questions and includes links to Best Practice articles for various development platforms and products.
Security - What You Need to Know