Change default policy value for X-XSS-Protection header
Closed this issue · 0 comments
pealtrufo commented
As per current OWASP recommendations, I suggest we change the value enforced by default policy for 'X-XSS-Protection' header to '0'.
Closed this issue · 0 comments
As per current OWASP recommendations, I suggest we change the value enforced by default policy for 'X-XSS-Protection' header to '0'.