Add additional security-policy headers

We’d like to see DeveloperHub implement some additional security headers and policies on our hosted docs site, including:

  • A Content-Security-Policy Header
  • An X-Content-Type-Options header
  • An X-Frame-Options Header
  • And a Strict-Transport-Security

Hey @Gabe_Kahen.

This is on our radar but it’s a big rework of how we serve the front end application. We aim to have this available in 2022.

1 Like