rdelaage
/
miniflux-v2
mirror of https://github.com/miniflux/v2.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
miniflux-v2/internal/http
History
jvoisin 93c9d43497 http/response: get rid of the X-XSS-Protection header 
It's useless at best, dangerous at worst, and shouldn't be used anymore
anywhere. See the following resources for details:

- https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-XSS-Protection
- https://chromestatus.com/feature/5021976655560704
- https://bugzilla.mozilla.org/show_bug.cgi?id=528661
- https://blogs.windows.com/windows-insider/2018/07/25/announcing-windows-10-insider-preview-build-17723-and-build-18204/
 		2024-03-24 13:45:38 -07:00
..
cookie Move internal packages to an internal folder 2023-08-10 20:29:34 -07:00
request Minor idiomatic pass on internal/http/request/context.go 2024-03-19 20:21:23 -07:00
response http/response: get rid of the X-XSS-Protection header 2024-03-24 13:45:38 -07:00
route Implement structured logging using log/slog package 2023-09-24 22:37:33 -07:00
server Fix inaccessible metrics endpoint when listening on Unix socket 2023-12-06 19:52:33 -08:00