peter/ukaiautomation
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Security hardening + new tools deployment

Browse Source 
- Hide Apache version (ServerTokens Prod)
- Add Permissions-Policy header
- Remove deprecated X-XSS-Protection
- Consolidate security headers to .htaccess only (remove duplicates from PHP)
- Deploy free tools: robots-analyzer, data-converter
- Deploy tools announcement blog post
- Update sitemap with new tools and blog post
This commit is contained in:
root
2026-02-05 04:11:15 +00:00
parent 3a0d8034c7
commit b6e39fe0c2
89 changed files with 4866 additions and 1932 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
blog/articles/healthcare-research-data-collection.php
View File

@@ -1,9 +1,5 @@
<?php
// Security headers
header('X-Content-Type-Options: nosniff');
header('X-Frame-Options: DENY');
header('X-XSS-Protection: 1; mode=block');
header('Referrer-Policy: strict-origin-when-cross-origin');
header('Content-Security-Policy: default-src \'self\'; script-src \'self\' \'unsafe-inline\' https://www.googletagmanager.com; style-src \'self\' \'unsafe-inline\' https://fonts.googleapis.com; font-src \'self\' https://fonts.gstatic.com; img-src \'self\' data: https:; connect-src \'self\' https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com;');
// Article-specific variables
@@ -351,5 +347,6 @@ $breadcrumbs = [
<?php include($_SERVER['DOCUMENT_ROOT'] . '/includes/footer.php'); ?>
<script src="/assets/js/main.js" defer></script>
<script src="../../assets/js/cro-enhancements.js"></script>
</body>
</html>