-
It looks like you are adding headers before calling next() in the middleware. This means that any middleware registered after the security header middleware does not have a chance to preempt the middl…
-
-
-
:information_source: View this commit [on Github](https://github.com/TYPO3/typo3/commit/13758d53870c9409f7e36ba5f6b6d01671b2b658)
:busts_in_silhouette: Authored by Oliver Hader oliver@typo3.org
:heavy…
-
-
When using Tampermonkey, some scripts require the option "Modify existing content security policy (CSP) headers" under the "Security" section in Tampermonkey settings to be set to "yes" in order to wo…
-
-
**Please complete the following information:**
- 2.0.7
- iPhone 14
**Describe the Bug:**
NullPointerException gets thrown on iOS but not on Android.
Hello!
I call an Endpoint where I may …
-
Mozilla published a new tool to judge webpage security. They complain about a couple of http headers missing from dokuwiki, see:
https://observatory.mozilla.org/analyze.html?host=www.dokuwiki.org
In …
-
We are unable to set the hardened_site criteria to "Met" for our project in https://www.bestpractices.dev/en/projects/1614/ Each of the URLs listed there have a A rating from securityheaders.com, but …