Open r-casula opened 2 weeks ago
This should be mostly an nginx centric change. Few missing headers were detected during the responses returned by the API, namely:
nginx
strict-transport-security
content-security-policy
permission-policy
feature-policy
referrer-policy
x-content-type-options
x-frame-options
x-xss-protection
This should be mostly an
nginxcentric change. Few missing headers were detected during the responses returned by the API, namely:strict-transport-securitycontent-security-policypermission-policyandfeature-policyreferrer-policyx-content-type-optionsx-frame-optionsx-xss-protectionThese are in descending order of severity.