diff options
Diffstat (limited to 'netlify.toml')
-rw-r--r-- | netlify.toml | 10 |
1 files changed, 10 insertions, 0 deletions
diff --git a/netlify.toml b/netlify.toml index 112bf78..422ca3b 100644 --- a/netlify.toml +++ b/netlify.toml @@ -13,3 +13,13 @@ ZOLA_VERSION = "0.17.2" [context.deploy-preview] command = "zola build --base-url $DEPLOY_PRIME_URL" + +[[headers]] + for = "/*" + [headers.values] + X-Frame-Options = "DENY" + X-Content-Type-Options = "nosniff" + X-XSS-Protection = "1; mode=block" + Referrer-Policy = "strict-origin-when-cross-origin" + Strict-Transport-Security = "max-age=63072000; includeSubdomains" + Content-Security-Policy = "default-src 'none'; img-src 'self'; object-src 'none'; script-src 'none'; style-src 'unsafe-inline'; frame-ancestors 'none'" |