Skip to content

Navigation Menu

Explore
By company size
By use case
By industry
View all solutions
Topics
- AI
- DevOps
- Security
- Software Development
- View all
Explore
- GitHub Sponsors
  Fund open source developers
- The ReadME Project
  GitHub community articles
Repositories
- Enterprise platform
  AI-powered developer platform
Available add-ons
Pricing

Search code, repositories, users, issues, pull requests...

Search

Clear

Search syntax tips

Provide feedback

We read every piece of feedback, and take your input very seriously.

Include my email address so I can be contacted

Saved searches

Use saved searches to filter your results more quickly

Name

Query

To see all available qualifiers, see our documentation.

You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session.

Dismiss alert

riverside / http-headers Public

Notifications You must be signed in to change notification settings
Fork 6
Star 22

Code
Issues 1
Pull requests 1
Actions
Projects
Security
Insights

Additional navigation options

Code
Issues
Pull requests
Actions
Projects
Security
Insights

Releases: riverside/http-headers

Releases · riverside/http-headers

Version 1.19.1

02 Sep 17:52

riverside

Compare

Choose a tag to compare

Loading

Version 1.19.1 Latest

Latest

Added “clientHints” directive to “Clear-Site-Data” header
Added “credentialless” directive to “Cross-Origin-Embedder-Policy” header

Assets 2

Loading

All reactions

Version 1.19.0

23 Jul 08:09

riverside

Compare

Choose a tag to compare

Loading

Version 1.19.0

Fixed: SSRF vulnerability by an Admin user
Fixed: XSS vulnerability by an Admin user

Assets 2

Loading

All reactions

Version 1.18.11

13 Jun 14:09

riverside

Compare

Choose a tag to compare

Loading

Version 1.18.11

Patch for RCE by Admin user

Assets 2

Loading

All reactions

Version 1.18.4

30 Apr 09:00

riverside

Compare

Choose a tag to compare

Loading

Version 1.18.4

Added "X-Robots-Tag" header
Added "interest-cohort", "layout-animations", "legacy-image-formats", "oversized-images", and "wake-lock" directive to "Permissions-Policy" header
Added "cross-origin" value to "Cross-Origin-Resource-Policy" header
Added "navigate-to" and "prefetch-src" directives to "Content-Security-Policy" header

Assets 2

Loading

All reactions

Version 1.18.1

31 Oct 17:22

riverside

Compare

Choose a tag to compare

Loading

Version 1.18.1

Added “allow-downloads” and “allow-top-navigation-by-user-activation” to “sandbox” directive, part of CSP

Assets 2

Loading

All reactions

Version 1.17.0

26 Jul 09:32

riverside

Compare

Choose a tag to compare

Loading

Version 1.17.0

Added "Cross-Origin-Embedder-Policy" header
Added "Cross-Origin-Opener-Policy" header

Assets 2

Loading

All reactions

Version 1.16.1

23 Jul 19:29

riverside

Compare

Choose a tag to compare

Loading

Version 1.16.1

Fix resource versioning

Assets 2

Loading

All reactions

Version 1.16.0

23 Jul 18:47

riverside

Compare

Choose a tag to compare

Loading

Version 1.16.0

Added the "NEL" header
Fixed the "Report-To" header

Assets 2

Loading

All reactions

Various improvements

09 Jun 08:33

riverside

Compare

Choose a tag to compare

Loading

Various improvements

Support of Brotli compression
Support of "SameSite" directive to cookies
Import/export function bugfixed
Code refactoring

Assets 2

Loading

All reactions

Remove direct calls to cURL

10 Jan 17:39

riverside

Compare

Choose a tag to compare

Loading

Remove direct calls to cURL

Direct calls to cURL was removed

Assets 2

Loading

All reactions

Previous 1 2 Next

Previous Next

Footer

© 2024 GitHub, Inc.

Footer navigation

Terms
Privacy
Security
Status
Docs
Contact

You can’t perform that action at this time.