Minor grammar and typo fixes

wadie · Feb 15, 2017 · 5fbd55a · 5fbd55a
1 parent 11128ad
commit 5fbd55a
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/...ges/06-information-security-and-quality-assurance/information-security-with-helmetjs.json b/...ges/06-information-security-and-quality-assurance/information-security-with-helmetjs.json
@@ -69,7 +69,7 @@
       "id": "587d8247367417b2b2512c39",
       "title": "Mitigate the risk of Cross Site Scripting (XSS) Attacks - helmet.xssFilter()",
       "description": [
-        "Cross-site scripting (XSS) is a frequent type of attack where malicious script are injected into vulnerable pages, on the purpose of stealing sensitive data like session cookies, or passwords.",
+        "Cross-site scripting (XSS) is a frequent type of attack where malicious scripts are injected into vulnerable pages, with the purpose of stealing sensitive data like session cookies, or passwords.",
         "The basic rule to lower the risk of an XSS attack is simple: “Never trust user’s input”. As a developer you should always sanitize all the input coming from the outside. This includes data coming from forms, GET query urls, and even from POST bodies. Sanitizing means that you should find and encode the characters that may be dangerous e.g. <, >.",
         "Modern browsers can help mitigating the risk by adopting better software strategies. Often these are configurable via http headers.",
         "The X-XSS-Protection HTTP header is a basic protection. The browser detects a potential injected script using a heuristic filter. If the header is enabled, the browser changes the script code, neutralizing it.",
@@ -174,7 +174,7 @@
       "id": "587d8249367417b2b2512c3e",
       "title": "Disable Client-Side Caching - helmet.noCache()",
       "description": [
-        "If you are releasing an update for your website, and you want the users to always download the newer version, you can (try to) disable caching on client’s browser. It can be useful in development too. Caching has performance benefits, and you will lose them, use this option only when there is a real need."
+        "If you are releasing an update for your website, and you want the users to always download the newer version, you can (try to) disable caching on client’s browser. It can be useful in development too. Caching has performance benefits, which you will lose, so only use this option when there is a real need."
       ],
       "challengeSeed": [],
       "tests": [