This repository was archived by the owner on Jul 5, 2023. It is now read-only.
generated from shgysk8zer0/static-template
-
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy path_headers
More file actions
23 lines (19 loc) · 2.01 KB
/
_headers
File metadata and controls
23 lines (19 loc) · 2.01 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
/
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self'; img-src 'self' cdn.kernvalley.us/img/ *.githubusercontent.com/u/ i.imgur.com/ secure.gravatar.com/avatar/; script-src 'self' cdn.kernvalley.us/ cdn.kernvalley.us/ unpkg.com/@webcomponents/ www.google-analytics.com www.googletagmanager.com cdn.polyfill.io/v3/polyfill.min.js; style-src 'self' cdn.kernvalley.us; connect-src 'self' cdn.kernvalley.us apps.kernvalley.us/apps.json api.github.com/users/ api.pwnedpasswords.com/range/ www.google-analytics.com/ www.googletagmanager.com/gtag/; font-src cdn.kernvalley.us; media-src 'none'; frame-src 'none'; form-action 'self'; manifest-src 'self'; worker-src 'self'; reflected-xss block; upgrade-insecure-requests; block-all-mixed-content;
/:placeholder/
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self'; img-src *; script-src 'self' cdn.kernvalley.us unpkg.com/ www.google-analytics.com www.googletagmanager.com cdn.polyfill.io/v3/polyfill.min.js; style-src 'self' cdn.kernvalley.us unpkg.com/; connect-src 'self' cdn.kernvalley.us apps.kernvalley.us/apps.json api.github.com/users/ api.openweathermap.org/data/2.5/ www.google-analytics.com/ www.googletagmanager.com/gtag/ baconipsum.com/api/; font-src cdn.kernvalley.us; media-src *; frame-src www.youtube-nocookie.com open.spotify.com/embed/; form-action 'self'; manifest-src 'self'; worker-src 'self'; reflected-xss block; upgrade-insecure-requests; block-all-mixed-content; disown-opener;
/reset
Clear-Site-Data: "cache", "cookies", "storage"
Content-Security-Policy: default-src 'self'; script-src 'self' cdn.kernvalley.us;
/service-worker.js
Content-Security-Policy: default-src 'self'; connect-src *; script-src 'self' cdn.kernvalley.us/service-worker.js;
Link: <//cdn.kernvalley.us/service-worker.js> rel=preload; as=script
Link: </sw-config.js> rel=preload; as=script
/*
X-Content-Type-Options: nosniff