-
**Environments**
- playwright-go Version: v0.4201.1
- Browser: firefox
- OS and version: macOS
**Bug description**
after set user-agent, browserscan.net check is ok, only twitter's Your A…
-
While the ASP.NET repository comes with all required infrastructure to support a web application to emit HTTP Strict Transport Security (HSTS) headers that browsers can use to adhere to [the applicabl…
-
The current [index.html](https://github.com/Chainlit/chainlit/blob/86ded88680a5e47edd5177b5cbe7fe01c597ab4e/frontend/index.html) uses [custom placeholders for search and replace](https://github.com/Ch…
-
## At which URL did you encounter the problem?
Any Skosmos browser page will be affected by this.
## What steps will reproduce the problem?
1. Configure the web server to set Content-Security-Pol…
-
Right now, we pass any extraneous HTTP headers set by the module. Are there headers that we should block for security or performance reasons?
-
is it possible to add custom headers to the webadmin? if not could this ability be added?
check your webadmin url on https://securityheaders.io/ and you can see security headers which should be added…
-
**Is your feature request related to a problem? Please describe.**
I'm trying to make my GameVault backend server available to the public, but I want to make sure it is secured. Right now it is behin…
-
**Describe the bug**
I'm trying to import my extended listening history going back to 2010.
I was able to import around 65k without issue, but now it always fails
![image](https://github.com/Y…
-
### Is this the right place to submit this?
- [X] This is not a security vulnerability or a crashing bug
- [X] This is not a question about how to use Istio
### Bug Description
I'm following the Is…
-
The only security measure `ActiveStorage::DirectUploadsController` has is `protect_from_forgery with: :exception`. The `DirectUpload` js client fetches the csrf token from the page header to pass this…