- Feb 03, 2023
-
-
Drew Webber authored
-
Drew Webber authored
-
Issue #3107303 by rpayanm, cboyden, ron_s, byronveale, jweowu, mcdruid, bkosborne, dsnopek, Rajeshreeputra: Skip report-uri processing if value is empty
-
- Feb 08, 2022
-
-
jweowu authored
-
- Feb 05, 2022
-
-
jweowu authored
-
- Feb 04, 2022
-
-
jweowu authored
-
- Jun 11, 2019
- Jun 10, 2019
-
-
Drew Webber authored
-
- Mar 12, 2019
-
-
- Feb 20, 2019
-
-
- Sep 24, 2018
-
-
Drew Webber authored
-
- Sep 21, 2018
-
-
- Aug 24, 2018
-
-
-
Issue #2613426 by mcdruid, milodesc, jweowu: Trim whitelisted CSRF origins before checking against origin
-
Drew Webber authored
-
- Aug 16, 2018
-
-
-
Issue #2675922 by joekers, mkhamash, benjaminbradley, ronaldmulero: frame-ancestors in Content Security Policy
-
-
- Apr 06, 2018
-
-
Drew Webber authored
Issue #2845923 by AndyF, bonus, mcdruid: Origin header is incorrectly verified for sites in subdirectories.
-
- Sep 08, 2016
-
-
jweowu authored
-
- Sep 04, 2016
- May 30, 2016
-
-
- Mar 21, 2016
-
-
jweowu authored
-
- Mar 20, 2016
-
-
- Feb 29, 2016
-
-
Issue #2668376 by milodesc, jweowu: Differentiate X-XSS-Protection header values "1" and "1; mode=block"
-
- Feb 27, 2016
-
-
- Feb 23, 2016
-
-
Issue #2281315 by stefan.r, jweowu, vinmassaro: Option to disable autocompletion on user login/registration forms
-
-
-
-
-
- Oct 11, 2015
-
-
-
jweowu authored
-