Skip to content

Commit

Permalink
remove xss protection no modern browser supports this header
Browse files Browse the repository at this point in the history 
Signed-off-by: Chang-Ning Tsai <[email protected]>
  • Loading branch information
@crazyguitar
crazyguitar committed Dec 19, 2023
1 parent 709f797 commit f68fd03
Show file tree
Hide file tree
Showing 2 changed files with 1 addition and 2 deletions.
1 change: 0 additions & 1 deletion app_test.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -44,7 +44,6 @@ def check_security_headers(self, resp):
"""Check security headers."""
headers = resp.headers
self.assertTrue("Content-Security-Policy" in headers)
self.assertTrue("X-XSS-Protection" in headers)
self.assertTrue("X-Content-Type-Options" in headers)
self.assertTrue("Content-Security-Policy" in headers)
self.assertTrue("Feature-Policy" in headers)
Expand Down
2 changes: 1 addition & 1 deletion requirements.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,7 +5,7 @@ Flask==2.3.3
Flask-SSLify==0.1.5
Flask-Testing==0.8.1
Flask-SeaSurf==1.1.1
flask-talisman==1.0.0
flask-talisman==1.1.0
gunicorn==21.2.0
pycodestyle==2.11.1
pydocstyle==6.3.0
Expand Down

0 comments on commit f68fd03

Please sign in to comment.