Nov
DEC
Jan
30
2019
2020
2021
About this capture
Organization:
Internet Archive
Focused crawls are collections of frequently-updated webcrawl data from narrow (as opposed to broad or wide) web crawls, often focused on a single domain or subdomain.
T h e W a y b a c k M a c h i n e - h t t p : / / w e b . a r c h i v e . o r g / w e b / 2 0 2 0 1 2 3 0 0 1 2 6 1 3 / h t t p s : / / g i t h u b . c o m / g i t h u b / s e c u r e _ h e a d e r s
S k i p t o c o n t e n t
/ ; r e f _ c t a : S i g n u p ; r e f _ l o c : h e a d e r l o g g e d o u t " >
S i g n up
●
F e a t u r e s → ● C o d e r e v i e w ● P r o j e c t m a n a g e m e n t ● I n t e g r a t i o n s ● A c t i o n s ● P a c k a g e s ● S e c u r i t y ● T e a m m a n a g e m e n t ● H o s t i n g ● M o b i l e
● C u s t o m e r s t o r i e s → ● S e c u r i t y →
●
●
●
● E x p l o r e G i t H u b →
L e a r n & c o n t r i b u t e ● T o p i c s ● C o l l e c t i o n s ● T r e n d i n g ● L e a r n i n g L a b ● O p e n s o u r c e g u i d e s
C o n n e c t w i t h o t h e r s ● E v e n t s ● C o m m u n i t y f o r u m ● G i t H u b E d u c a t i o n ● G i t H u b S t a r s p r o g r a m
●
●
P l a n s → ● C o m p a r e p l a n s ● C o n t a c t S a l e s
● N o n p r o f i t → ● E d u c a t i o n →
In this repository
All GitHub
↵
Jump to
↵
No suggested jump to results
{ { m e s s a g e } }
●
W a t c h
1 8 4
●
S t a r
2 . 8 k
●
F o r k
2 2 7
M a n a g e s a p p l i c a t i o n o f s e c u r i t y h e a d e r s w i t h m a n y s a f e d e f a u l t s
M I T L i c e n s e
2 . 8 k s t a r s
2 2 7 f o r k s
S t a r
W a t c h
●
C o d e
●
I s s u e s 31
●
P u l l r e q u e s t s 3
●
A c t i o n s
●
S e c u r i t y
●
I n s i g h t s
M o r e
●
C o d e
●
I s s u e s
●
P u l l r e q u e s t s
●
A c t i o n s
●
S e c u r i t y
●
I n s i g h t s
6 b r a n c h e s
84 t a g s
G o t o f i l e
C o d e
C l o n e
U s e G i t o r c h e c k o u t w i t h S V N u s i n g t h e w e b U R L .
W o r k f a s t w i t h o u r o f f i c i a l C L I .
L e a r n m o r e .
●
O p e n w i t h G i t H u b D e s k t o p
●
D o w n l o a d Z I P
L a u n c h i n g G i t H u b D e s k t o p I f n o t h i n g h a p p e n s , d o w n l o a d G i t H u b D e s k t o p a n d t r y a g a i n .
G o b a c k
L a u n c h i n g G i t H u b D e s k t o p I f n o t h i n g h a p p e n s , d o w n l o a d G i t H u b D e s k t o p a n d t r y a g a i n .
G o b a c k
L a u n c h i n g X c o d e I f n o t h i n g h a p p e n s , d o w n l o a d X c o d e a n d t r y a g a i n .
G o b a c k
L a u n c h i n g V i s u a l S t u d i o I f n o t h i n g h a p p e n s , d o w n l o a d t h e G i t H u b e x t e n s i o n f o r V i s u a l S t u d i o a n d t r y a g a i n .
G o b a c k
L a t e s t c o m m i t
o r e o s h a k e
M e r g e p u l l r e q u e s t # 4 5 1 f r o m M r C u l l / p a t c h - 1
…
6 2 d 5 f b 8
D e c 2 3 , 2 0 2 0
M e r g e p u l l r e q u e s t # 4 5 1 f r o m M r C u l l / p a t c h - 1
Deadlink in readme file in this repo to https://github.com/sourceclear/headlines which does not exist - Status code [404:NotFound]
6 2 d 5 f b 8
G i t s t a t s ●
1 , 0 1 1
c o m m i t s
F i l e s
P e r m a l i n k
F a i l e d t o l o a d l a t e s t c o m m i t i n f o r m a t i o n .
T y p e N a m e L a t e s t c o m m i t m e s s a g e C o m m i t t i m e
. g i t h u b
d o c s
l i b
s p e c
. g i t i g n o r e
. r s p e c
. r u b o c o p . y m l
. r u b y - g e m s e t
. r u b y - v e r s i o n
C H A N G E L O G . m d
C O D E _ O F _ C O N D U C T . m d
C O N T R I B U T I N G . m d
G e m f i l e
G u a r d f i l e
L I C E N S E
R E A D M E . m d
R a k e f i l e
s e c u r e _ h e a d e r s . g e m s p e c
V i e w c o d e
R E A D M E . m d
S e c u r e H e a d e r s m a i n b r a n c h r e p r e s e n t s 6 . x l i n e . S e e t h e u p g r a d i n g t o 4 . x d o c , u p g r a d i n g t o 5 . x d o c , o r u p g r a d i n g t o 6 . x d o c f o r i n s t r u c t i o n s o n h o w t o u p g r a d e . B u g f i x e s s h o u l d g o i n t h e 5 . x b r a n c h f o r n o w . T h e g e m w i l l a u t o m a t i c a l l y a p p l y s e v e r a l h e a d e r s t h a t a r e r e l a t e d t o s e c u r i t y . T h i s i n c l u d e s : ● C o n t e n t S e c u r i t y P o l i c y ( C S P ) - H e l p s d e t e c t / p r e v e n t X S S , m i x e d - c o n t e n t , a n d o t h e r c l a s s e s o f a t t a c k . C S P 2 S p e c i f i c a t i o n ● h t t p s : / / c s p . w i t h g o o g l e . c o m ● h t t p s : / / c s p . w i t h g o o g l e . c o m / d o c s / s t r i c t - c s p . h t m l ● h t t p s : / / c s p - e v a l u a t o r . w i t h g o o g l e . c o m ● H T T P S t r i c t T r a n s p o r t S e c u r i t y ( H S T S ) - E n s u r e s t h e b r o w s e r n e v e r v i s i t s t h e h t t p v e r s i o n o f a w e b s i t e . P r o t e c t s f r o m S S L S t r i p / F i r e s h e e p a t t a c k s . H S T S S p e c i f i c a t i o n ● X - F r a m e - O p t i o n s ( X F O ) - P r e v e n t s y o u r c o n t e n t f r o m b e i n g f r a m e d a n d p o t e n t i a l l y c l i c k j a c k e d . X - F r a m e - O p t i o n s S p e c i f i c a t i o n ● X - X S S - P r o t e c t i o n - C r o s s s i t e s c r i p t i n g h e u r i s t i c f i l t e r f o r I E / C h r o m e ● X - C o n t e n t - T y p e - O p t i o n s - P r e v e n t c o n t e n t t y p e s n i f f i n g ● X - D o w n l o a d - O p t i o n s - P r e v e n t f i l e d o w n l o a d s o p e n i n g ● X - P e r m i t t e d - C r o s s - D o m a i n - P o l i c i e s - R e s t r i c t A d o b e F l a s h P l a y e r ' s a c c e s s t o d a t a ● R e f e r r e r - P o l i c y - R e f e r r e r P o l i c y d r a f t ● E x p e c t - C T - O n l y u s e c e r t i f i c a t e s t h a t a r e p r e s e n t i n t h e c e r t i f i c a t e t r a n s p a r e n c y l o g s . E x p e c t - C T d r a f t s p e c i f i c a t i o n . ● C l e a r - S i t e - D a t a - C l e a r i n g b r o w s e r d a t a f o r o r i g i n . C l e a r - S i t e - D a t a s p e c i f i c a t i o n . I t c a n a l s o m a r k a l l h t t p c o o k i e s w i t h t h e S e c u r e , H t t p O n l y a n d S a m e S i t e a t t r i b u t e s . T h i s i s o n d e f a u l t b u t c a n b e t u r n e d o f f b y u s i n g c o n f i g . c o o k i e s = S e c u r e H e a d e r s : : O P T _ O U T . s e c u r e _ h e a d e r s i s a l i b r a r y w i t h a g l o b a l c o n f i g , p e r r e q u e s t o v e r r i d e s , a n d r a c k m i d d l e w a r e t h a t e n a b l e s y o u c u s t o m i z e y o u r a p p l i c a t i o n s e t t i n g s . D o c u m e n t a t i o n ● N a m e d o v e r r i d e s a n d a p p e n d s ● P e r a c t i o n c o n f i g u r a t i o n ● C o o k i e s ● H a s h e s ● S i n a t r a C o n f i g C o n f i g u r a t i o n I f y o u d o n o t s u p p l y a d e f a u l t c o n f i g u r a t i o n , e x c e p t i o n s w i l l b e r a i s e d . I f y o u w o u l d l i k e t o u s e a d e f a u l t c o n f i g u r a t i o n ( w h i c h i s f a i r l y l o c k e d d o w n ) , j u s t c a l l S e c u r e H e a d e r s : : C o n f i g u r a t i o n . d e f a u l t w i t h o u t a n y a r g u m e n t s o r b l o c k . A l l n i l v a l u e s w i l l f a l l b a c k t o t h e i r d e f a u l t v a l u e s . S e c u r e H e a d e r s : : O P T _ O U T w i l l d i s a b l e t h e h e a d e r e n t i r e l y . W o r d o f c a u t i o n : T h e f o l l o w i n g i s n o t a d e f a u l t c o n f i g u r a t i o n p e r s e . I t s e r v e s a s a s a m p l e i m p l e m e n t a t i o n o f t h e c o n f i g u r a t i o n . Y o u s h o u l d r e a d m o r e a b o u t t h e s e h e a d e r s a n d d e t e r m i n e w h a t i s a p p r o p r i a t e f o r y o u r r e q u i r e m e n t s . SecureHeaders ::Configuration . default do config |
config . cookies = {
secure : true , # mark all cookies as "Secure"
httponly : true , # mark all cookies as "HttpOnly"
samesite : {
lax : true # mark all cookies as SameSite=lax
}
}
# Add "; preload" and submit the site to hstspreload.org for best protection.
config . hsts = "max-age=#{ 1 . week . to_i }
config . x_frame_options = "DENY"
config . x_content_type_options = "nosniff"
config . x_xss_protection = "1; mode=block"
config . x_download_options = "noopen"
config . x_permitted_cross_domain_policies = "none"
config . referrer_policy = %w( origin-when-cross-origin strict-origin-when-cross-origin )
config . csp = {
# "meta" values. these will shape the header, but the values are not included in the header.
preserve_schemes : true , # default: false. Schemes are removed from host sources to save bytes and discourage mixed content.
disable_nonce_backwards_compatibility : true , # default: false. If false, `unsafe-inline` will be added automatically when using nonces. If true, it won't. See #403 for why you'd want this.
# directive values: these values will directly translate into source directives
default_src : %w( 'none' ) ,
base_uri : %w( 'self' ) ,
block_all_mixed_content : true , # see http://www.w3.org/TR/mixed-content/
child_src : %w( 'self' ) , # if child-src isn't supported, the value for frame-src will be set.
connect_src : %w( wss: ) ,
font_src : %w( 'self' data: ) ,
form_action : %w( 'self' github.com ) ,
frame_ancestors : %w( 'none' ) ,
img_src : %w( mycdn.com data: ) ,
manifest_src : %w( 'self' ) ,
media_src : %w( utoob.com ) ,
object_src : %w( 'self' ) ,
sandbox : true , # true and [] will set a maximally restrictive setting
plugin_types : %w( application/x-shockwave-flash ) ,
script_src : %w( 'self' ) ,
style_src : %w( 'unsafe-inline' ) ,
worker_src : %w( 'self' ) ,
upgrade_insecure_requests : true , # see https://www.w3.org/TR/upgrade-insecure-requests/
report_uri : %w( https://report-uri.io/example-csp )
}
# This is available only from 3.5.0; use the `report_only: true` setting for 3.4.1 and below.
config . csp_report_only = config . csp . merge ( {
img_src : %w( somewhereelse.com ) ,
report_uri : %w( https://report-uri.io/example-csp-report-only )
} )
end D e f a u l t v a l u e s A l l h e a d e r s e x c e p t f o r P u b l i c K e y P i n s a n d C l e a r S i t e D a t a h a v e a d e f a u l t v a l u e . T h e d e f a u l t s e t o f h e a d e r s i s :
Content-Security-Policy: default-src 'self' https:; font-src 'self' https: data:; img-src 'self' https: data:; object-src 'none'; script-src https:; style-src 'self' https: 'unsafe-inline'
Strict-Transport-Security: max-age=631138519
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: sameorigin
X-Permitted-Cross-Domain-Policies: none
X-Xss-Protection: 1; mode=block
A P I c o n f i g u r a t i o n s W h i c h h e a d e r s y o u d e c i d e t o u s e f o r A P I r e s p o n s e s i s e n t i r e l y a p e r s o n a l c h o i c e . T h i n g s l i k e X - F r a m e - O p t i o n s s e e m t o h a v e n o p l a c e i n a n A P I r e s p o n s e a n d w o u l d b e w a s t i n g b y t e s . W h i l e t h i s i s t r u e , b r o w s e r s c a n d o f u n k y t h i n g s w i t h n o n - h t m l r e s p o n s e s . A t t h e m i n i m u m , w e s u g g e s t C S P : SecureHeaders ::Configuration . override ( :api ) do config |
config . csp = { default_src : 'none' }
config . hsts = SecureHeaders ::OPT_OUT
config . x_frame_options = SecureHeaders ::OPT_OUT
config . x_content_type_options = SecureHeaders ::OPT_OUT
config . x_xss_protection = SecureHeaders ::OPT_OUT
config . x_permitted_cross_domain_policies = SecureHeaders ::OPT_OUT
end H o w e v e r , I w o u l d c o n s i d e r t h e s e h e a d e r s a n y w a y s d e p e n d i n g o n y o u r l o a d a n d b a n d w i d t h r e q u i r e m e n t s . A c k n o w l e d g e m e n t s T h i s p r o j e c t o r i g i n a t e d w i t h i n t h e S e c u r i t y t e a m a t T w i t t e r . A n a r c h i v e d f o r k f r o m t h e p o i n t o f t r a n s i t i o n i s h e r e : h t t p s : / / g i t h u b . c o m / t w i t t e r - a r c h i v e / s e c u r e _ h e a d e r s . C o n t r i b u t o r s i n c l u d e : ● N e i l M a t a t a l l @ o r e o s h a k e ● C h r i s A n i s z c z y k ● A r t u r D r y o m o v ● B j ø r n M æ l a n d ● A r t h u r C h i u ● J o n a t h a n V i n e y ● J e f f r e y H o r n ● D a v i d C o l l a z o ● B r e n d o n M u r p h y ● W i l l i a m M a k l e y ● R e e d L o d e n ● N o a h K a n t r o w i t z ● W y a t t A n d e r s o n ● S a l i m a n e A d j a o M o u s t a p h a ● F r a n c o i s C h a g n o n ● J e f f H o d g e s ● I a n M e l v e n ● D a r í o J a v i e r C r a v e r o ● L o g a n H a s s o n ● R a u l E R a n g e l ● S t e v e A g a l l o c o ● N a t e C o l l i n g s ● J o s h K a l d e r i m i s ● A l e x K w i a t k o w s k i ● J u l i c h M e r a ● J e s s e S t o r i m e r ● T o m D a n i e l s ● K o l j a D u m m a n n ● J e a n - P h i l i p p e D o y l e ● B l a k e H i t c h c o c k ● v a n d e r h o o r n ● o r t h o g r a p h i c - p e d a n t ● N a r s i m h a m C h e l l u r i I f y o u ' v e m a d e a c o n t r i b u t i o n a n d s e e y o u r n a m e m i s s i n g f r o m t h e l i s t , m a k e a P R a n d a d d i t ! S i m i l a r l i b r a r i e s ● R a c k r a c k - s e c u r e _ h e a d e r s ● N o d e . j s ( e x p r e s s ) h e l m e t a n d h o o d ● N o d e . j s ( h a p i ) b l a n k i e ● A S P . N E T - N W e b s e c ● P y t h o n - d j a n g o - c s p + c o m m o n w a r e ; d j a n g o - s e c u r i t y ● G o - s e c u r e h e a d e r ● E l i x i r s e c u r e _ h e a d e r s ● D r o p w i z a r d d r o p w i z a r d - w e b - s e c u r i t y ● E m b e r . j s e m b e r - c l i - c o n t e n t - s e c u r i t y - p o l i c y ● P H P s e c u r e - h e a d e r s
A b o u t
M a n a g e s a p p l i c a t i o n o f s e c u r i t y h e a d e r s w i t h m a n y s a f e d e f a u l t s
T o p i c s
s e c u r e - h e a d e r s
c s p
h s t s
r e f e r r e r - p o l i c y
r a c k
m i d d l e w a r e
x f r a m e - o p t i o n s
r u b y
c o o k i e
c o n t e n t - s e c u r i t y - p o l i c y
R e s o u r c e s
R e a d m e
L i c e n s e
M I T L i c e n s e
F i x r a i l s 2 s u p p o r t
L a t e s t
N o v 2 8 , 2 0 1 6
+ 8 3 r e l e a s e s
N o p a c k a g e s p u b l i s h e d
+ 8 5 4
+ 6 8 c o n t r i b u t o r s
L a n g u a g e s
●
R u b y 1 0 0 . 0 %
● © 2 0 2 0 G i t H u b , I n c . ● T e r m s ● P r i v a c y ● S e c u r i t y ● S t a t u s ● H e l p
● C o n t a c t G i t H u b ● P r i c i n g ● A P I ● T r a i n i n g ● B l o g ● A b o u t
Y o u c a n ’ t p e r f o r m t h a t a c t i o n a t t h i s t i m e .
Y o u s i g n e d i n w i t h a n o t h e r t a b o r w i n d o w . R e l o a d t o r e f r e s h y o u r s e s s i o n . Y o u s i g n e d o u t i n a n o t h e r t a b o r w i n d o w . R e l o a d t o r e f r e s h y o u r s e s s i o n . 
