https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP
This requries a bit more setup than HSTS.
We also need to write a restrictive policy that still allows to embed youtube videos on the main and dev sites.
Not sure how it works with mediawiki, cytube and mediawiki
https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP
This requries a bit more setup than HSTS.
We also need to write a restrictive policy that still allows to embed youtube videos on the main and dev sites.
Not sure how it works with mediawiki, cytube and mediawiki
https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP
This requries a bit more setup than HSTS.
We also need to write a restrictive policy that still allows to embed youtube videos on the main and dev sites.
Not sure how it works with mediawiki, cytube and mediawiki
Should we use it in report only mode?
Closed in favour of #129