Feb
MAR
Apr
31
2021
2022
2023
About this capture
Organization:
Internet Archive
Focused crawls are collections of frequently-updated webcrawl data from narrow (as opposed to broad or wide) web crawls, often focused on a single domain or subdomain.
T h e W a y b a c k M a c h i n e - h t t p : / / w e b . a r c h i v e . o r g / w e b / 2 0 2 2 0 3 3 1 0 1 4 0 1 2 / h t t p s : / / g i t h u b . c o m / g i t h u b / s e c u r e _ h e a d e r s
S k i p t o c o n t e n t
S i g n up
●
●
F e a t u r e s
●
M o b i l e
●
A c t i o n s
●
C o d e s p a c e s
●
P a c k a g e s
●
S e c u r i t y
●
C o d e r e v i e w
●
I s s u e s
●
I n t e g r a t i o n s
●
G i t H u b S p o n s o r s
●
C u s t o m e r s t o r i e s
●
●
●
●
E x p l o r e G i t H u b
● L e a r n a n d c o n t r i b u t e ●
T o p i c s
●
C o l l e c t i o n s
●
T r e n d i n g
●
L e a r n i n g L a b
●
O p e n s o u r c e g u i d e s
● C o n n e c t w i t h o t h e r s ●
T h e R e a d M E P r o j e c t
●
E v e n t s
●
C o m m u n i t y f o r u m
●
G i t H u b E d u c a t i o n
●
G i t H u b S t a r s p r o g r a m
●
●
●
P l a n s
●
C o m p a r e p l a n s
●
C o n t a c t S a l e s
●
E d u c a t i o n
In this repository
All GitHub
↵
Jump to
↵
No suggested jump to results
{ { m e s s a g e } }
●
N o t i f i c a t i o n s
●
F o r k
2 5 2
S t a r
3 k
M a n a g e s a p p l i c a t i o n o f s e c u r i t y h e a d e r s w i t h m a n y s a f e d e f a u l t s
M I T L i c e n s e
3 k s t a r s
2 5 2 f o r k s
S t a r
N o t i f i c a t i o n s
●
C o d e ●
I s s u e s 20 ●
P u l l r e q u e s t s 3 ●
A c t i o n s ●
S e c u r i t y ●
I n s i g h t s
M o r e
●
C o d e
●
I s s u e s
●
P u l l r e q u e s t s
●
A c t i o n s
●
S e c u r i t y
●
I n s i g h t s
T h i s c o m m i t d o e s n o t b e l o n g t o a n y b r a n c h o n t h i s r e p o s i t o r y , a n d m a y b e l o n g t o a f o r k o u t s i d e o f t h e r e p o s i t o r y .
C o u l d n o t l o a d b r a n c h e s
N o t h i n g t o s h o w
r a n c h e s
C o u l d n o t l o a d t a g s
N o t h i n g t o s h o w
14 b r a n c h e s
86 t a g s
C o d e
L a t e s t c o m m i t
o r e o s h a k e
d o n ' t l i m i t r u b o c o p v e r s i o n
…
7 f 8 9 d f 2
N o v 1 4 , 2 0 2 1
d o n ' t l i m i t r u b o c o p v e r s i o n
7 f 8 9 d f 2
G i t s t a t s ●
1 , 0 2 7
c o m m i t s
F i l e s
P e r m a l i n k
F a i l e d t o l o a d l a t e s t c o m m i t i n f o r m a t i o n .
T y p e N a m e L a t e s t c o m m i t m e s s a g e C o m m i t t i m e
. g i t h u b
D e l e t e s y n c . y m l
M a r 9 , 2 0 2 1
d o c s
U p d a t e p e r _ a c t i o n _ c o n f i g u r a t i o n . m d
A p r 2 8 , 2 0 2 1
l i b
b u m p t o 6 . 3 . 3
S e p 7 , 2 0 2 1
s p e c
C h a n g e : a d d s p e c s t o v e r i f y t h a t t h e a d d e d d i r e c t i v e s a r e i n c l u d e d i n …
F e b 7 , 2 0 2 1
. g i t i g n o r e
c l e a n u p . g i t i g n o r e
M a r 1 , 2 0 1 6
. r s p e c
r e m o v e r s p e c b l o c k n o t a t i o n f r o m R a k e f i l e
J u n 2 , 2 0 1 7
. r u b o c o p . y m l
A d d r u b o c o p - p e r f o r m a n c e g e m a n d c o n f i g t o f i x d e p r e c a t i o n m e s s a g e ( # 4 3 0 )
F e b 2 0 , 2 0 2 0
. r u b y - g e m s e t
r v m r c c h a n g e
J u n 9 , 2 0 1 4
. r u b y - v e r s i o n
" c l a s s = " L i n k - - s e c o n d a r y " h r e f = " / w e b / 2 0 2 2 0 3 3 1 0 1 4 0 1 2 / h t t p s : / / g i t h u b . c o m / g i t h u b / s e c u r e _ h e a d e r s / c o m m i t / 3 8 1 5 a b 4 d a 0 4 7 f b 5 2 b e 9 c 1 c 4 5 7 e 0 8 d 3 5 1 c 9 0 6 5 d 5 b " > F i x r u b y 2 . 7 d e p r e c a t i o n w a r n i n g s w i t h * * ( # 4 4 3 " c l a s s = " L i n k - - s e c o n d a r y " h r e f = " / w e b / 2 0 2 2 0 3 3 1 0 1 4 0 1 2 / h t t p s : / / g i t h u b . c o m / g i t h u b / s e c u r e _ h e a d e r s / c o m m i t / 3 8 1 5 a b 4 d a 0 4 7 f b 5 2 b e 9 c 1 c 4 5 7 e 0 8 d 3 5 1 c 9 0 6 5 d 5 b " > )
J u n 2 6 , 2 0 2 0
C H A N G E L O G . m d
b u m p t o 6 . 3 . 3
S e p 7 , 2 0 2 1
C O D E _ O F _ C O N D U C T . m d
C r e a t e C O D E _ O F _ C O N D U C T . m d
A p r 2 1 , 2 0 1 7
C O N T R I B U T I N G . m d
U p d a t e C O N T R I B U T I N G . m d
J u n 2 0 , 2 0 1 7
G e m f i l e
d o n ' t l i m i t r u b o c o p v e r s i o n
N o v 1 5 , 2 0 2 1
G u a r d f i l e
f i x r u b o c o p v i o l a t i o n s
J u n 2 , 2 0 1 7
L I C E N S E
D o y e a r s e v e n m a t t e r ?
J a n 2 1 , 2 0 2 0
R E A D M E . m d
A d d h t t p s : / / g i t h u b . c o m / T y p e E r r o r / s e c u r e t o l i s t o f s i m i l a r l i b r a r i e s
M a y 6 , 2 0 2 1
R a k e f i l e
r e m o v e r s p e c b l o c k n o t a t i o n f r o m R a k e f i l e
J u n 2 , 2 0 1 7
s e c u r e _ h e a d e r s . g e m s p e c
c l e a n u p s o m e l i n t e r e r r o r s s h o w i n g u p i n n e w e r C I
J u n 2 6 , 2 0 1 9
V i e w c o d e
S e c u r e H e a d e r s m a i n b r a n c h r e p r e s e n t s 6 . x l i n e . S e e t h e u p g r a d i n g t o 4 . x d o c , u p g r a d i n g t o 5 . x d o c , o r u p g r a d i n g t o 6 . x d o c f o r i n s t r u c t i o n s o n h o w t o u p g r a d e . B u g f i x e s s h o u l d g o i n t h e 5 . x b r a n c h f o r n o w . T h e g e m w i l l a u t o m a t i c a l l y a p p l y s e v e r a l h e a d e r s t h a t a r e r e l a t e d t o s e c u r i t y . T h i s i n c l u d e s : ● C o n t e n t S e c u r i t y P o l i c y ( C S P ) - H e l p s d e t e c t / p r e v e n t X S S , m i x e d - c o n t e n t , a n d o t h e r c l a s s e s o f a t t a c k . C S P 2 S p e c i f i c a t i o n ● h t t p s : / / c s p . w i t h g o o g l e . c o m ● h t t p s : / / c s p . w i t h g o o g l e . c o m / d o c s / s t r i c t - c s p . h t m l ● h t t p s : / / c s p - e v a l u a t o r . w i t h g o o g l e . c o m ● H T T P S t r i c t T r a n s p o r t S e c u r i t y ( H S T S ) - E n s u r e s t h e b r o w s e r n e v e r v i s i t s t h e h t t p v e r s i o n o f a w e b s i t e . P r o t e c t s f r o m S S L S t r i p / F i r e s h e e p a t t a c k s . H S T S S p e c i f i c a t i o n ● X - F r a m e - O p t i o n s ( X F O ) - P r e v e n t s y o u r c o n t e n t f r o m b e i n g f r a m e d a n d p o t e n t i a l l y c l i c k j a c k e d . X - F r a m e - O p t i o n s S p e c i f i c a t i o n ● X - X S S - P r o t e c t i o n - C r o s s s i t e s c r i p t i n g h e u r i s t i c f i l t e r f o r I E / C h r o m e ● X - C o n t e n t - T y p e - O p t i o n s - P r e v e n t c o n t e n t t y p e s n i f f i n g ● X - D o w n l o a d - O p t i o n s - P r e v e n t f i l e d o w n l o a d s o p e n i n g ● X - P e r m i t t e d - C r o s s - D o m a i n - P o l i c i e s - R e s t r i c t A d o b e F l a s h P l a y e r ' s a c c e s s t o d a t a ● R e f e r r e r - P o l i c y - R e f e r r e r P o l i c y d r a f t ● E x p e c t - C T - O n l y u s e c e r t i f i c a t e s t h a t a r e p r e s e n t i n t h e c e r t i f i c a t e t r a n s p a r e n c y l o g s . E x p e c t - C T d r a f t s p e c i f i c a t i o n . ● C l e a r - S i t e - D a t a - C l e a r i n g b r o w s e r d a t a f o r o r i g i n . C l e a r - S i t e - D a t a s p e c i f i c a t i o n . I t c a n a l s o m a r k a l l h t t p c o o k i e s w i t h t h e S e c u r e , H t t p O n l y a n d S a m e S i t e a t t r i b u t e s . T h i s i s o n d e f a u l t b u t c a n b e t u r n e d o f f b y u s i n g c o n f i g . c o o k i e s = S e c u r e H e a d e r s : : O P T _ O U T . s e c u r e _ h e a d e r s i s a l i b r a r y w i t h a g l o b a l c o n f i g , p e r r e q u e s t o v e r r i d e s , a n d r a c k m i d d l e w a r e t h a t e n a b l e s y o u c u s t o m i z e y o u r a p p l i c a t i o n s e t t i n g s . D o c u m e n t a t i o n ● N a m e d o v e r r i d e s a n d a p p e n d s ● P e r a c t i o n c o n f i g u r a t i o n ● C o o k i e s ● H a s h e s ● S i n a t r a C o n f i g C o n f i g u r a t i o n I f y o u d o n o t s u p p l y a d e f a u l t c o n f i g u r a t i o n , e x c e p t i o n s w i l l b e r a i s e d . I f y o u w o u l d l i k e t o u s e a d e f a u l t c o n f i g u r a t i o n ( w h i c h i s f a i r l y l o c k e d d o w n ) , j u s t c a l l S e c u r e H e a d e r s : : C o n f i g u r a t i o n . d e f a u l t w i t h o u t a n y a r g u m e n t s o r b l o c k . A l l n i l v a l u e s w i l l f a l l b a c k t o t h e i r d e f a u l t v a l u e s . S e c u r e H e a d e r s : : O P T _ O U T w i l l d i s a b l e t h e h e a d e r e n t i r e l y . W o r d o f c a u t i o n : T h e f o l l o w i n g i s n o t a d e f a u l t c o n f i g u r a t i o n p e r s e . I t s e r v e s a s a s a m p l e i m p l e m e n t a t i o n o f t h e c o n f i g u r a t i o n . Y o u s h o u l d r e a d m o r e a b o u t t h e s e h e a d e r s a n d d e t e r m i n e w h a t i s a p p r o p r i a t e f o r y o u r r e q u i r e m e n t s . SecureHeaders ::Configuration . default do config |
config . cookies = {
secure : true , # mark all cookies as "Secure"
httponly : true , # mark all cookies as "HttpOnly"
samesite : {
lax : true # mark all cookies as SameSite=lax
}
}
# Add "; preload" and submit the site to hstspreload.org for best protection.
config . hsts = "max-age=#{ 1 . week . to_i }
config . x_frame_options = "DENY"
config . x_content_type_options = "nosniff"
config . x_xss_protection = "1; mode=block"
config . x_download_options = "noopen"
config . x_permitted_cross_domain_policies = "none"
config . referrer_policy = %w( origin-when-cross-origin strict-origin-when-cross-origin )
config . csp = {
# "meta" values. these will shape the header, but the values are not included in the header.
preserve_schemes : true , # default: false. Schemes are removed from host sources to save bytes and discourage mixed content.
disable_nonce_backwards_compatibility : true , # default: false. If false, `unsafe-inline` will be added automatically when using nonces. If true, it won't. See #403 for why you'd want this.
# directive values: these values will directly translate into source directives
default_src : %w( 'none' ) ,
base_uri : %w( 'self' ) ,
block_all_mixed_content : true , # see http://www.w3.org/TR/mixed-content/
child_src : %w( 'self' ) , # if child-src isn't supported, the value for frame-src will be set.
connect_src : %w( wss: ) ,
font_src : %w( 'self' data: ) ,
form_action : %w( 'self' github.com ) ,
frame_ancestors : %w( 'none' ) ,
img_src : %w( mycdn.com data: ) ,
manifest_src : %w( 'self' ) ,
media_src : %w( utoob.com ) ,
object_src : %w( 'self' ) ,
sandbox : true , # true and [] will set a maximally restrictive setting
plugin_types : %w( application/x-shockwave-flash ) ,
script_src : %w( 'self' ) ,
script_src_elem : %w( 'self' ) ,
script_src_attr : %w( 'self' ) ,
style_src : %w( 'unsafe-inline' ) ,
style_src_elem : %w( 'unsafe-inline' ) ,
style_src_attr : %w( 'unsafe-inline' ) ,
worker_src : %w( 'self' ) ,
upgrade_insecure_requests : true , # see https://www.w3.org/TR/upgrade-insecure-requests/
report_uri : %w( https://report-uri.io/example-csp )
}
# This is available only from 3.5.0; use the `report_only: true` setting for 3.4.1 and below.
config . csp_report_only = config . csp . merge ( {
img_src : %w( somewhereelse.com ) ,
report_uri : %w( https://report-uri.io/example-csp-report-only )
} )
end D e f a u l t v a l u e s A l l h e a d e r s e x c e p t f o r P u b l i c K e y P i n s a n d C l e a r S i t e D a t a h a v e a d e f a u l t v a l u e . T h e d e f a u l t s e t o f h e a d e r s i s : Content-Security-Policy: default-src 'self' https:; font-src 'self' https: data:; img-src 'self' https: data:; object-src 'none'; script-src https:; style-src 'self' https: 'unsafe-inline'
Strict-Transport-Security: max-age=631138519
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Frame-Options: sameorigin
X-Permitted-Cross-Domain-Policies: none
X-Xss-Protection: 1; mode=block
A P I c o n f i g u r a t i o n s W h i c h h e a d e r s y o u d e c i d e t o u s e f o r A P I r e s p o n s e s i s e n t i r e l y a p e r s o n a l c h o i c e . T h i n g s l i k e X - F r a m e - O p t i o n s s e e m t o h a v e n o p l a c e i n a n A P I r e s p o n s e a n d w o u l d b e w a s t i n g b y t e s . W h i l e t h i s i s t r u e , b r o w s e r s c a n d o f u n k y t h i n g s w i t h n o n - h t m l r e s p o n s e s . A t t h e m i n i m u m , w e s u g g e s t C S P : SecureHeaders ::Configuration . override ( :api ) do config |
config . csp = { default_src : 'none' }
config . hsts = SecureHeaders ::OPT_OUT
config . x_frame_options = SecureHeaders ::OPT_OUT
config . x_content_type_options = SecureHeaders ::OPT_OUT
config . x_xss_protection = SecureHeaders ::OPT_OUT
config . x_permitted_cross_domain_policies = SecureHeaders ::OPT_OUT
end H o w e v e r , I w o u l d c o n s i d e r t h e s e h e a d e r s a n y w a y s d e p e n d i n g o n y o u r l o a d a n d b a n d w i d t h r e q u i r e m e n t s . A c k n o w l e d g e m e n t s T h i s p r o j e c t o r i g i n a t e d w i t h i n t h e S e c u r i t y t e a m a t T w i t t e r . A n a r c h i v e d f o r k f r o m t h e p o i n t o f t r a n s i t i o n i s h e r e : h t t p s : / / g i t h u b . c o m / t w i t t e r - a r c h i v e / s e c u r e _ h e a d e r s . C o n t r i b u t o r s i n c l u d e : ● N e i l M a t a t a l l @ o r e o s h a k e ● C h r i s A n i s z c z y k ● A r t u r D r y o m o v ● B j ø r n M æ l a n d ● A r t h u r C h i u ● J o n a t h a n V i n e y ● J e f f r e y H o r n ● D a v i d C o l l a z o ● B r e n d o n M u r p h y ● W i l l i a m M a k l e y ● R e e d L o d e n ● N o a h K a n t r o w i t z ● W y a t t A n d e r s o n ● S a l i m a n e A d j a o M o u s t a p h a ● F r a n c o i s C h a g n o n ● J e f f H o d g e s ● I a n M e l v e n ● D a r í o J a v i e r C r a v e r o ● L o g a n H a s s o n ● R a u l E R a n g e l ● S t e v e A g a l l o c o ● N a t e C o l l i n g s ● J o s h K a l d e r i m i s ● A l e x K w i a t k o w s k i ● J u l i c h M e r a ● J e s s e S t o r i m e r ● T o m D a n i e l s ● K o l j a D u m m a n n ● J e a n - P h i l i p p e D o y l e ● B l a k e H i t c h c o c k ● v a n d e r h o o r n ● o r t h o g r a p h i c - p e d a n t ● N a r s i m h a m C h e l l u r i I f y o u ' v e m a d e a c o n t r i b u t i o n a n d s e e y o u r n a m e m i s s i n g f r o m t h e l i s t , m a k e a P R a n d a d d i t ! S i m i l a r l i b r a r i e s ● R a c k r a c k - s e c u r e _ h e a d e r s ● N o d e . j s ( e x p r e s s ) h e l m e t a n d h o o d ● N o d e . j s ( h a p i ) b l a n k i e ● A S P . N E T - N W e b s e c ● P y t h o n - d j a n g o - c s p + c o m m o n w a r e ; d j a n g o - s e c u r i t y , s e c u r e ● G o - s e c u r e h e a d e r ● E l i x i r s e c u r e _ h e a d e r s ● D r o p w i z a r d d r o p w i z a r d - w e b - s e c u r i t y ● E m b e r . j s e m b e r - c l i - c o n t e n t - s e c u r i t y - p o l i c y ● P H P s e c u r e - h e a d e r s
A b o u t
M a n a g e s a p p l i c a t i o n o f s e c u r i t y h e a d e r s w i t h m a n y s a f e d e f a u l t s
T o p i c s
r u b y
r a c k
s e c u r e - h e a d e r s
c s p
h s t s
r e f e r r e r - p o l i c y
m i d d l e w a r e
x f r a m e - o p t i o n s
c o o k i e
c o n t e n t - s e c u r i t y - p o l i c y
R e s o u r c e s
R e a d m e
L i c e n s e
M I T L i c e n s e
C o d e o f c o n d u c t
C o d e o f c o n d u c t
S t a r s
3 k s t a r s
W a t c h e r s
1 7 5 w a t c h i n g
F o r k s
2 5 2 f o r k s
F i x r a i l s 2 s u p p o r t
L a t e s t
N o v 2 8 , 2 0 1 6
+ 3 9 r e l e a s e s
N o p a c k a g e s p u b l i s h e d
+ 1 , 0 8 4
+ 7 1 c o n t r i b u t o r s
L a n g u a g e s
●
R u b y 1 0 0 . 0 %
●
© 2 0 2 2 G i t H u b , I n c .
● T e r m s ● P r i v a c y ● S e c u r i t y ● S t a t u s ● D o c s ● C o n t a c t G i t H u b ● P r i c i n g ● A P I ● T r a i n i n g ● B l o g ● A b o u t
Y o u c a n ’ t p e r f o r m t h a t a c t i o n a t t h i s t i m e .
Y o u s i g n e d i n w i t h a n o t h e r t a b o r w i n d o w . R e l o a d t o r e f r e s h y o u r s e s s i o n . Y o u s i g n e d o u t i n a n o t h e r t a b o r w i n d o w . R e l o a d t o r e f r e s h y o u r s e s s i o n . 
