Mitigate XSS Attacks with Content Security Policy

jomaxro · June 2, 2020, 4:13pm

Given that the spec is still a draft, I don’t expect us to implement it at this time. The Mozilla website you listed even says:

The Feature-Policy header is still in an experimental state, and is subject to change at any time. Be wary of this when implementing Feature Policy on your website.

Topic		Replies	Views
Discourse 2.2.0.beta6 Release Notes announcements release-notes	1	3310	December 14, 2018
Full site CDN acceleration for Discourse sysadmin cdn , explanation	36	17408	September 6, 2023
MKJ's Opinionated Discourse Deployment Configuration sysadmin explanation	30	5519	March 23, 2024
Communities with embedded Twitter Feeds support	33	3349	February 10, 2021
Add an offline page to display when Discourse is rebuilding or starting up sysadmin configuring , how-to , advanced-setup	135	234650	January 5, 2024

Mitigate XSS Attacks with Content Security Policy

Related Topics