Changeset 3048614
- Timestamp:
- 03/10/2024 01:52:26 PM (5 months ago)
- Location:
- headers-security-advanced-hsts-wp/trunk
- Files:
-
- 3 edited
Legend:
- Unmodified
- Added
- Removed
-
headers-security-advanced-hsts-wp/trunk/changelog.txt
r3048597 r3048614 1 2 3 4 5 1 6 = 5.0.30 = 2 7 We don't want to tell you what to do, but here's the point: if you've updated the Headers Security Advanced & HSTS WP plugin last time, you've seen that when we suggest doing so, we don't just say it and leave it at that. Well, with this 5.0.30 version we've added and fixed a lot (we got rid of some bugs, tidied up some pesky pixels and updated the graphics) and it all works great. Are we agreed? Touch "update" and we'll provide you with the most beautiful, fastest, and most impressive plugin around. Enjoy! -
headers-security-advanced-hsts-wp/trunk/headers-security-advanced-hsts-wp.php
r3047961 r3048614 4 4 * Plugin URI: https://www.tentacleplugins.com/ 5 5 * Description: Headers Security Advanced & HSTS WP - Simple, Light and Fast. The plugin uses advanced security rules that provide huge levels of protection and it is important that your site uses it. This step is important to submit your website and/or domain to an approved HSTS list. Google officially compiles this list and it is used by Chrome, Firefox, Opera, Safari, IE11 and Edge. You can forward your site to the official HSTS preload directory. Cross Site Request Forgery (CSRF) is a common attack with the installation of Headers Security Advanced & HSTS WP will help you mitigate CSRF on your WordPress site. 6 * Version: 5.0.3 36 * Version: 5.0.3 7 7 * Text Domain: headers-security-advanced-hsts-wp 8 8 * Domain Path: /languages … … 24 24 } 25 25 26 const HSTS_PLUGIN_VERSION = '5.0.3 3';26 const HSTS_PLUGIN_VERSION = '5.0.3'; 27 27 const HSTS_STANDARD_VALUE_CSP = 'upgrade-insecure-requests;'; 28 28 const HSTS_STANDARD_VALUE_PERMISSIONS_POLICY = 'accelerometer=(), autoplay=(), camera=(), cross-origin-isolated=(), display-capture=(self), encrypted-media=(), fullscreen=*, geolocation=(self), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), payment=*, picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), xr-spatial-tracking=(), gamepad=(), serial=()'; … … 43 43 $headers['X-Content-Type-Options'] = 'nosniff'; 44 44 $headers['X-Frame-Options'] = hsts_plugin_get_x_frame_options_header(); 45 $headers['X-XSS-Protection'] = '1; mode=block';46 45 $headers['X-Permitted-Cross-Domain-Policies'] = 'none'; 47 46 … … 487 486 488 487 function hsts_plugin_delete_old_options(): void { 489 // Last referenced by plugin version 5.0.3 3.488 // Last referenced by plugin version 5.0.3. 490 489 delete_option( 'HEADERS_SECURITY_ADVANCED_HSTS_WP_PLUGIN_VERSION' ); 491 490 } -
headers-security-advanced-hsts-wp/trunk/readme.txt
r3048598 r3048614 2 2 Contributors: unicorn03, unicorn07, erku, alexclassroom, 3 3 Donate link: https://www.buymeacoffee.com/tentacleplugins 4 Tags: headers security, hsts, h ttp headers, insecure content, force ssl, headers, login security, xss, clickjacking, mitm, cross origin, cross site, privacy, csp4 Tags: headers security, hsts, h, csp 5 5 Requires at least: 4.7 6 6 Tested up to: 6.4 7 Stable tag: 5.0.3 37 Stable tag: 5.0.3 8 8 Requires PHP: 7.4 9 9 License: GPLv2 or later … … 25 25 26 26 * HSA Limit Login to block brute force attacks. 27 * X-XSS-Protection 27 * X-XSS-Protection 28 28 * Expect-CT 29 29 * Access-Control-Allow-Origin … … 259 259 == Changelog == 260 260 261 = 5.0.3 3=262 We don't want to tell you what to do, but here's the point: if you've updated the Headers Security Advanced & HSTS WP plugin last time, you've seen that when we suggest doing so, we don't just say it and leave it at that. Well, with this 5.0.3 3version we've added and fixed a lot (we got rid of some bugs, tidied up some pesky pixels and updated the graphics) and it all works great. Are we agreed? Touch "update" and we'll provide you with the most beautiful, fastest, and most impressive plugin around. Enjoy!263 - fix: Preparation with a graphical update on some functionalities.264 - New: New feature to customize headers (X-Frame-Options and Permissions-Policy), if not customized will use an automated value from OWASP.261 = 5.0.3 = 262 We don't want to tell you what to do, but here's the point: if you've updated the Headers Security Advanced & HSTS WP plugin last time, you've seen that when we suggest doing so, we don't just say it and leave it at that. Well, with this 5.0.3 version we've added and fixed a lot (we got rid of some bugs, tidied up some pesky pixels and updated the graphics) and it all works great. Are we agreed? Touch "update" and we'll provide you with the most beautiful, fastest, and most impressive plugin around. Enjoy! 263 - . 264 - .
Note: See TracChangeset
for help on using the changeset viewer.