Skip to content

Commit

Permalink
fix: Potential opener manipulation (#10318)
Browse files Browse the repository at this point in the history 
<!--
Before opening a pull request, please read the [contributing
guidelines](https://github.com/pancakeswap/pancake-frontend/blob/develop/CONTRIBUTING.md)
first
-->


<!-- start pr-codex -->

---

## PR-Codex overview
This PR adds a new security header `Cross-Origin-Opener-Policy` with the
value `same-origin` in the `withWebSecurityHeaders.ts` file.

### Detailed summary
- Added a new security header `Cross-Origin-Opener-Policy` with value
`same-origin`

> ✨ Ask PR-Codex anything about this PR by commenting with `/codex {your
question}`

<!-- end pr-codex -->
  • Loading branch information
@chefjackson
chefjackson authored Aug 4, 2024
1 parent 6db9d16 commit 15f8d27
Showing 1 changed file with 4 additions and 0 deletions.
4 changes: 4 additions & 0 deletions packages/next-config/withWebSecurityHeaders.ts
View file
Original file line number Diff line number Diff line change
Expand Up @@ -33,6 +33,10 @@ export function withWebSecurityHeaders(config: NextConfig): NextConfig {
key: 'Referrer-Policy',
value: 'strict-origin-when-cross-origin',
},
{
key: 'Cross-Origin-Opener-Policy',
value: 'same-origin',
},
// createCSP(),
],
},
Expand Down

0 comments on commit 15f8d27

Please sign in to comment.