Security Headers - Githubissues

shieldfy / API-Security-Checklist

Checklist of the most important security countermeasures when designing, testing, and releasing your API

MIT License

22.21k stars 2.57k forks source link

Open beyhantanerr opened 8 months ago

beyhantanerr commented 8 months ago

Hello,

Why is it required to have security headers alike HSTS, CSP and X-FRAME OPTIONS if the API is not browsable?