Skip to content

Commit f9b2c96

Browse files
dvershinindvershinin
committed
v0.1.0
1 parent 8ae7b91 commit f9b2c96

File tree

2 files changed

+6
-1
lines changed

2 files changed

+6
-1
lines changed

CHANGELOG.md

Lines changed: 5 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,11 @@
11
# Changelog
22
All notable changes to this project will be documented in this file.
33

4+
## [0.1.0] - 2023-09-06
5+
#### Fixed
6+
* HSTS set to 1 year instead of 2 years by default (#18)
7+
* New default `X-XSS-Protection: 0`, see #19
8+
49
## [0.0.11] - 2022-03-18
510
#### Fixed
611
* Sending HSTS header no longer requires building with OpenSSL #12

README.md

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -27,7 +27,7 @@ Connection: keep-alive
2727
X-Content-Type-Options: nosniff
2828
X-XSS-Protection: 0
2929
Referrer-Policy: strict-origin-when-cross-origin
30-
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload</b>
30+
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload</b>
3131
</pre>
3232

3333
In general, the module features sending security HTTP headers in a way that better conforms to the standards.

0 commit comments

Comments
 (0)