Closed jpiesing closed 2 days ago
The security section has upgrade-insecure-requests but not HSTS (aka RFC 6796).
We should consider adding HSTS. According to caniuse.com it's been supported in all browsers for many years, more than 10 years for most of them.
Double submission in error.
jpiesing
commented
2 days ago jpiesing
commented
2 days ago
The security section has upgrade-insecure-requests but not HSTS (aka RFC 6796).
We should consider adding HSTS. According to caniuse.com it's been supported in all browsers for many years, more than 10 years for most of them.