-
[hito1-iteracion2.zip](https://github.com/ABPMultimediaUA/Turismo-Torrevieja/files/1476884/hito1-iteracion2.zip)
-
# Problem
Some plugins need to cooperate. For instance: `framing` plugin needs to cooperate with a `csp` plugin, `cors` would usually disable `xsrf`.
# Proposed solution
To avoid the extra co…
-
# Requirements
---
Mozilla has a neat tool for inspecting security on websites. Once we have the website stood up, perhaps post MVP, let's investigate this:
https://observatory.mozilla.org/anal…
-
### https://observatory.mozilla.org/analyze.html?host=nextinpact.com
- [ ] Content Security Policy (CSP) header not implemented
- [ ] Cookies set without using the Secure flag or set over http
- …
-
Investigate recommendations from https://observatory.mozilla.org/analyze.html?host=ethereum.org
- [ ] Content Security Policy (Content Security Policy (CSP) header not implemented)
- [ ] X-Frame-O…
luclu updated
6 years ago
-
#### Description
Summary:
Normally it is possible to execute Swift code wrapped in an Objective-C function which can catch any NSException instances that get raised. However when importing such a wra…
-
**Bugzilla:** https://bugzilla.mozilla.org/show_bug.cgi?id=1434962
Everything looks good, these headers should be implemented:
* -20 cookies Anti-CSRF tokens set without using the SameSite flag.
…
-
**Is your feature request related to a problem? Please describe.**
For example, a rule
```
- id: use-x-frame-options
pattern-regex: "(?i)X-Frame-Options"
```
with a test
```
# ruleid:use-x-f…
-
[Textual_2016-01-21-161919_tobys-mac-mini.crash.zip](https://github.com/xlexi/Textual-Inline-Media/files/106978/Textual_2016-01-21-161919_tobys-mac-mini.crash.zip)
-
Only just occurred to me that iframes fire their load event even in the case of navigation 'failures'. If we reject in similar cases we're revealing something new.