-
-
-
-
The installation of BBB 2.5.4 (with bbb-install-2.5) does not set http security headers like content-security-policy, x-frame-options, hsts, x-content-type-options.
Is there any reason for not usi…
-
### The Feature
LiteLLM should add the following headers:
1. `content-security-policy`
2. `cross-origin-resource-policy`
3. `cross-origin-opener-policy`
4. `cross-origin-embedder-policy`
5. `x…
-
-
-
## Overview
In my Angular application, I'm setting the `Content-Security-Policy` response header using 'nonce' by a meta tag and also `angular.json` headers section, and both work well.
But when I…
-
### MDN URL
https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Server#directives
### What specific section or headline is this issue about?
Directives
### What information was incorrect, un…
-
A bunch of features require proper login checks and so on. Secure Headers are the first step for that.