jake/jarv.is
1
Fork 0
mirror of https://github.com/jakejarvis/jarv.is.git synced 2025-07-20 20:41:16 -04:00
Code Issues Activity

images are finally linkable again

Browse Source
This commit is contained in:
Jake Jarvis
2022-03-21 16:17:35 -04:00
parent 6b6bc5497e
commit 05608261ca
15 changed files with 185 additions and 143 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
notes/security-headers-cloudflare-workers.mdx
View File

@@ -15,9 +15,10 @@ image: "/static/images/notes/security-headers-cloudflare-workers/security-header
src="/public/static/images/notes/security-headers-cloudflare-workers/security-headers.png"
width="700"
height="275"
href="https://securityheaders.com/?q=jarv.is&followRedirects=on"
priority
>
An [A+ security grade](https://securityheaders.com/?q=jarv.is&followRedirects=on) for this website!
An [A+ security grade](https://securityheaders.com/?q=jarv.is&followRedirects=on) for this website!
</Figure>
In 2019, it's becoming more and more important to harden websites via HTTP response headers, which all modern browsers parse and enforce. Multiple standards have been introduced over the past few years to protect users from various attack vectors, including `Content-Security-Policy` for injection protection, `Strict-Transport-Security` for HTTPS enforcement, `X-XSS-Protection` for cross-site scripting prevention, `X-Content-Type-Options` to enforce correct MIME types, `Referrer-Policy` to limit information sent with external links, [and many, many more](https://www.netsparker.com/whitepaper-http-security-headers/).