...
SSL certificate - All Engaging Networks pages must use an SSL (Secure Socket Layer) certificate which encrypts data sent between a website and a browser. URLs for pages using an SSL will include HTTPS. Up to three SSL certificates are included as part of the subscription to Engaging Networks (procured through Cloudflare).
Secure page assets - Assets or resources linked on a page or in a page template should be also secure (HTTPS). Resources include stylesheets, JavaScript libraries, images and scripts. Any assets uploaded to Engaging Networks images and files library are stored securely.
Update libraries regularly - If your page template includes JavaScript libraries such as jQuery, be sure to regularly update them with the latest version. Old and outdated libraries may contain vulnerabilities that could be exploited by malicious actors. You can see if your pages or templates are using assets with known vulnerabilities using the scan results report.
Use validators when possible - Restrict the data that can input in fields on your Engaging Networks fields. This can be done with the standard field validators or with custom validators using RegEx.
...
Example of a jQuery library from Google
| Code Block | ||
|---|---|---|
| ||
<script src="https://ajax.googleapis.com/ajax/libs/jquery/3.7.1/jquery.min.js"></script> |
...
https://releases.jquery.com/
https://getbootstrap.com/
https://developers.google.com/speed/libraries
https://cdnjs.com/libraries/jquery
| Note |
|---|
There may be other considerations when choosing where to source your library fromYou should take into consideration the location of library hosting before using a service if you need to comply with GDPR. Please discuss with your own compliance teams to determine which to use. |
...