Security

Strengthen Thulite security with guidance on CSP, response headers, and email obfuscation to reduce common web risks in production.

Overview

Apply core security protections in Thulite with practical guidance for CSP, secure headers, and anti-scraping techniques for public websites.

Content Security Policy

Create and enforce a strict Content Security Policy in Thulite to limit resource origins, reduce XSS risk, and validate changes safely.

Headers

Set a secure header baseline for Thulite deployments, including HSTS, nosniff, framing controls, and policies for safer browser behavior.

Email Obfuscation

Protect published email addresses in Thulite using CSS-based obfuscation that remains readable for users while reducing basic scraping.