Set recommended value for Referrer-Policy

oshp / oshp-validator

Venom tests suite to validate an HTTP security response headers configuration against OSHP recommendation.

https://owasp.org/www-project-secure-headers/

GNU General Public License v3.0

100 stars 20 forks source link

Set recommended value for Referrer-Policy #7

Closed webroru closed 1 month ago

webroru commented 1 month ago

https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Referrer-Policy

righettod commented 1 month ago

Hi, Thanks for the PR. We (with @riramar) explicitly prefer to not specify any referring information by default. It is why we use the no-referrer instruction.