-
#### What would you like to be added:
Implement all the domain hardening and security headers for web apps.
E.g. https://github.com/DeFiCh/scan/blob/62661206c50e7ea2e4786bf0f1e3fa5392484ac3/…
-
### Steps To Reproduce
Open a vault.bitwarden.com website and look through the Developer console in any browser
### Expected Result
**1.** All the cookies have attributes:
`HttpOnly: True` `…
-
### Version
nuxt-security: 2.1.4
nuxt: 3.14.1592
![Image](https://github.com/user-attachments/assets/2328…
-
We should replace all direct uses of ResourceLoader with Fetch. This is because using ResourceLoader bypasses many features that Fetch handles:
- All security mechanisms (CORS-preflight, Mixed Conten…
-
Would be great to have some examples around how to add a fastapi middleware to verify sign-in, just like the Clerk documentation for the rails integration.
-
Mozilla published a new tool to judge webpage security. They complain about a couple of http headers missing from dokuwiki, see:
https://observatory.mozilla.org/analyze.html?host=www.dokuwiki.org
In …
-
-
-
-
We are unable to set the hardened_site criteria to "Met" for our project in https://www.bestpractices.dev/en/projects/1614/ Each of the URLs listed there have a A rating from securityheaders.com, but …