drepeeters
commented
4 months ago I have added the following headers to website-diag/netlify.toml:
[[headers]] for = "/*" [headers.values] X-Frame-Options = "SAMEORIGIN" X-Content-Type-Options = "nosniff" Referrer-Policy = "no-referrer" Permissions-Policy = "geolocation=(self), microphone=()"
Missing headers are not yet updated on the securityheaders.com website. I'll check again after the weekend if these headers are updated.
According to https://securityheaders.com/?q=https%3A%2F%2Fdiagnijmegen.nl&followRedirects=on our website is missing some security headers. We can see if we can improve this using settings on Netlify.
A safer website could help improve the ranking of the our website and make it more findable.