issues
search
github
/
secure_headers
Manages application of security headers with many safe defaults
MIT License
3.15k
stars
251
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Bump ruby/setup-ruby from 1.190.0 to 1.191.0
#522
dependabot[bot]
opened
2 days ago
0
[Housekeeping] Add permissions to build workflow and pin ruby
#521
vcsjones
closed
1 month ago
0
Update build.yml
#520
boveus
closed
1 month ago
0
fix: Avoid throwing cookie headers when encountering an empty cookie-av
#516
MrLukeSmith
closed
1 month ago
1
SecureHeaders middleware erases all cookies in Rack 3 due to \n joining
#514
collinsauve
opened
4 months ago
1
RubyGems doesn't have latest version of this gem
#513
zmariscal
closed
1 month ago
3
CSP Report-uri deprecated, replaced by report-to
#512
martindaehn23
opened
11 months ago
0
`content_security_policy_nonce` calls Rails method so CSP does not contain nonce
#511
jdudley1123
opened
11 months ago
2
Bump actions/checkout from 3 to 4
#510
dependabot[bot]
closed
1 month ago
0
deprecate block-all-mixed-content
#509
KyFaSt
closed
1 year ago
0
test issue
#508
KyFaSt
closed
1 year ago
0
test issue
#507
KyFaSt
closed
1 year ago
0
Make SecureSecurityPolicyConfig significantly faster
#506
jhawthorn
closed
1 year ago
0
How can I disable 'unsafe-inline' from script-src?
#505
josemateuss
closed
1 year ago
1
Adds Ruby 3.2 to the CI matrix
#504
petergoldstein
closed
1 year ago
1
jekyll integration
#503
LeoWebSEO
closed
1 year ago
3
Update `.ruby-version` to `3.1.1`
#502
lgarron
closed
1 year ago
0
v6.5.0
#501
lgarron
closed
1 year ago
0
CI changes: run on push, drop Ruby 2.5
#500
lgarron
closed
1 year ago
0
Remove source expression deduplication.
#499
lgarron
closed
1 year ago
0
Semantically parse and deduplicate source expressions
#498
lgarron
closed
1 year ago
3
Semantically parse source expressions.
#497
lgarron
closed
2 years ago
0
Set license code in metadata to MIT
#496
ekohl
closed
2 years ago
0
Trusted types: Use single-quoted `'script'`.
#495
lgarron
closed
2 years ago
0
update version and changelog
#494
KyFaSt
closed
2 years ago
0
Use SPDX license code and swap summary & description
#493
ekohl
closed
2 years ago
0
Installation instructions unclear
#492
TravisSpangle
closed
2 years ago
1
URI::InvalidURIError: Invalid data URI
#491
istana
closed
1 year ago
1
fix source dedup breaking with port wildcards
#490
machisuji
closed
1 year ago
7
Add Ruby 3.1 to the CI configuration
#489
petergoldstein
closed
2 years ago
1
Add Dependabot for GitHub Actions
#488
petergoldstein
closed
1 year ago
2
Update changelog and version for v6.3.4.
#487
lgarron
closed
2 years ago
0
Add trusted-types and require-trusted-types-for CSP Directive
#486
KyFaSt
closed
2 years ago
0
Add tests for hash generation
#485
rahearn
opened
2 years ago
0
Handle different schemes in dedup logic
#484
srt32
closed
2 years ago
1
Update README.md
#483
akashhansda
closed
2 years ago
0
Set `default-src` CSP Attribute to `none` by default
#482
rzhade3
opened
2 years ago
1
Update README.md
#481
akashhansda
closed
2 years ago
0
Major Version 7.0.0
#480
JackMc
opened
2 years ago
1
Update default X-XSS-Protection value to 0
#479
rzhade3
closed
1 month ago
2
do not dedupe alternate schema source expresions
#478
keithamus
closed
2 years ago
5
normalize domains with trailing slashes
#477
keithamus
opened
2 years ago
1
Support CSP "double policies"
#476
rohansharma
opened
2 years ago
0
Add global config for nonce (and hash) application
#475
pcasaretto
closed
2 years ago
3
Add require-trusted-types-for to CSP
#474
dorianmariecom
closed
2 years ago
3
Why is CSP in report only mode blocking requests?
#473
VikasKumar190
closed
2 years ago
3
Fix hash generation for indented helper methods
#472
rahearn
closed
3 years ago
3
Add support for CSP level 3
#471
ankitagrawal0x90
closed
3 years ago
3
nonced tag helpers including nonce directive in csp has potential to break applications
#470
pcasaretto
opened
3 years ago
17
Incorrect Version as latest release
#469
ibexcrm-dev
closed
3 years ago
1
Next