Free Post Security Headers Goodbye Feature Policy and hello Permissions Policy! I talked about Feature Policy [https://scotthelme.co.uk/a-new-security-header-feature-policy/] almost 2 years ago and it has seen great adoption since then. As things have progressed a name change has...
Free Post Security Headers Top 1 Million Analysis - March 2020 It's time for another 6 month update on the state of security online that's a little late! This is the second report using the new data...
Free Post Security Headers Security Headers Updates I've just deployed a few changes to Security Headers to bring it up to date with recent changes in the industry. Here are the details and how they...
Free Post Security Headers A new Security Header: Clear Site Data I was debating whether or not to call Clear Site Data a Security Header but in the end I decided I would. During the use of a web app we...
Free Post Feature Policy A new security header: Feature Policy We have a new Security Header!! Feature Policy will allow a site to enable or disable certain browser features and APIs in the interest of better security and privacy. Let&...
Free Post Security Headers Security Headers is changing domain and branding It was a little over 3 years ago when I first launched securityheaders.io and it's come a long way since then. This update doesn't really...
Free Post Cloudflare Workers The brand new Security Headers Cloudflare Worker For a long time it's been difficult to set security headers when you use certain hosted solutions like Ghost Pro or GitHub Pages. All of that is about...
Free Post Security Headers When crawlers are hungry for porn... I had a bit of a strange issue on Security Headers this week and at first I thought it was someone trolling me. Turns out it wasn't someone...
Free Post Security Headers Alexa Top 1 Million Analysis - February 2018 It's that time of year again! I'm really excited to publish the 6th installment of my Alexa Top 1 Million analysis so we can take a...
Free Post CSP Optimising Twitter's CSP header I'm sat on a train right now and between bursts of WiFi connectivity I'm testing some code to parse a CSP header. Whilst looking for big...
Follow