-
@TimVereecke @anthony_ricaud Is there any page(s) somewhere that lists which security headers should be attached to which content-types? It looks like @MozDevNet doesn't contain this: developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy For example, I guess Strict-Transport-Security can be useful for any resource, right?On twitter.com
Mood +4 🙂