This issue tracks tightening the CORS configuration in the production nginx server to use specific allowed origins instead of a wildcard.
Related advisory: https://github.com/encryption4all/postguard-outlook-addon/security/advisories/GHSA-m957-9cxh-72q7
This issue tracks tightening the CORS configuration in the production nginx server to use specific allowed origins instead of a wildcard.
Related advisory: https://github.com/encryption4all/postguard-outlook-addon/security/advisories/GHSA-m957-9cxh-72q7