Improve trust & safety #6
Description
NuriYuri
Issue body actions
- Ensure CSP is effective against XSS attacks https://developer.chrome.com/docs/lighthouse/best-practices/csp-xss/?utm_source=lighthouse&utm_medium=lr
- Use a strong HSTS policy https://developer.chrome.com/docs/lighthouse/best-practices/has-hsts?utm_source=lighthouse&utm_medium=lr
- Ensure proper origin isolation with COOP https://web.dev/articles/why-coop-coep?utm_source=lighthouse&utm_medium=lr#coop
- Mitigate clickjacking with XFO or CSP https://developer.chrome.com/docs/lighthouse/best-practices/clickjacking-mitigation?utm_source=lighthouse&utm_medium=lr
- Mitigate DOM-based XSS with trusted types https://developer.chrome.com/docs/lighthouse/best-practices/trusted-types-xss?utm_source=lighthouse&utm_medium=lr
- Redirects HTTP traffic to HTTPS
Reactions are currently unavailable