Task #13496

Implement Content-Security-Policy header/meta

Added by José Raddaoui Marín 6 months ago. Updated about 1 month ago.

Status:NewStart date:04/08/2021
Priority:HighDue date:
Assignee:-% Done:

0%

Category:Security
Target version:Release 2.7.0
Google Code Legacy ID: Tested version:
Sponsored:No Requires documentation:

Description

Content Security Policy defines approved sources of content that the browser may load. It can be an effective countermeasure to Cross Site Scripting (XSS) attacks and is also widely supported and usually easily deployed.

More info: https://scotthelme.co.uk/content-security-policy-an-introduction/

History

#1 Updated by Dan Gillean about 1 month ago

  • Priority changed from Medium to High

Also available in: Atom PDF