Mitigate XSS Attacks with Content Security Policy

Falco (Falco) July 19, 2021, 7:12pm 38

As promised, this feature was just enabled by default: CSP Frame Ancestors enabled by default

10 Likes

Topic		Replies	Views
Discourse 2.2.0.beta6 Release Notes Announcements release-notes	1	3403	December 14, 2018
Full site CDN acceleration for Discourse Self-Hosting cdn , explanation	36	18254	September 6, 2023
MKJ's Opinionated Discourse Deployment Configuration Sysadmins explanation , install	30	6152	March 23, 2024
Communities with embedded Twitter Feeds Support	33	3524	February 10, 2021
Discourse Fingerprint - Browser Fingerprinting Plugin Plugin experimental	60	8617	April 25, 2024