Mitigate XSS Attacks with Content Security Policy

Falco (Falco) July 19, 2021, 7:12pm 38

As promised, this feature was just enabled by default: CSP Frame Ancestors enabled by default

10 Likes

Topic		Replies	Views
Discourse 2.2.0.beta6 Release Notes announcements release-notes	1	3310	December 14, 2018
Full site CDN acceleration for Discourse sysadmin cdn , explanation	36	17397	September 6, 2023
MKJ's Opinionated Discourse Deployment Configuration sysadmin explanation	30	5509	March 23, 2024
Communities with embedded Twitter Feeds support	33	3344	February 10, 2021
Add an offline page to display when Discourse is rebuilding or starting up sysadmin configuring , how-to , advanced-setup	135	234523	January 5, 2024