Skip to content

Version 2.3.0

Compare
Choose a tag to compare
@shekyan shekyan released this 12 Apr 18:16
  • Allow "*" to match scheme of protected resource (#157)
  • Support for 'strict-dynamic' (#162)
  • Allow secure variant of scheme when only insecure is given (#91)
  • Refactor path-part matching algorithm to strictly follow latest specification (#166)
  • Refactor host-part matching algorithm to strictly follow latest specification (#168)
  • Rephrase messages about side-effects of unsafe-dynamic and unsafe-inline, change level from Warn to Info (#170)
  • Warn about deprecation of referrer directive (#173)
  • Support worker-src directive, reflect specification changes around worker-src and frame-src (#147)
  • Support for 'unsafe-hashed-attributes' (#150)