bepsvpt/secure-headers

CSP missing after latest release

austintoddj opened this issue · 2 comments

Not sure if something changed under the hood for this, but the CSP on a site of mine is no longer recognized, even though I've still got the CSP set to an empty string. Any idea on that?

Just running the sites through https://securityheaders.com/ to verify this.

Hi @austintoddj,

Could you please provide your CSP config? It will help me a lot to find out the problem.

I made a mistake. I had the CSP set to '', when it should have been null. Thanks for getting back and sorry for the confusion!