Below are the list of security principles in angular,
- We should avoid direct use of the DOM APIs.
- We should enable Content Security Policy (CSP) and configure your web server to return appropriate CSP HTTP headers.
- We should Use the offline template compiler.
- We should Use Server Side XSS protection.
- We should Use DOM Sanitizer.
- We should Preventing CSRF or XSRF attacks.