Changeset 3050548
- Timestamp:
- 03/13/2024 02:24:44 PM (5 months ago)
- Location:
- headers-security-advanced-hsts-wp/trunk
- Files:
-
- 3 edited
Legend:
- Unmodified
- Added
- Removed
-
headers-security-advanced-hsts-wp/trunk/changelog.txt
r3048614 r3050548 1 2 3 4 5 1 6 = 5.0.33 = 2 7 We don't want to tell you what to do, but here's the point: if you've updated the Headers Security Advanced & HSTS WP plugin last time, you've seen that when we suggest doing so, we don't just say it and leave it at that. Well, with this 5.0.33 version we've added and fixed a lot (we got rid of some bugs, tidied up some pesky pixels and updated the graphics) and it all works great. Are we agreed? Touch "update" and we'll provide you with the most beautiful, fastest, and most impressive plugin around. Enjoy! -
headers-security-advanced-hsts-wp/trunk/headers-security-advanced-hsts-wp.php
r3048614 r3050548 4 4 * Plugin URI: https://www.tentacleplugins.com/ 5 5 * Description: Headers Security Advanced & HSTS WP - Simple, Light and Fast. The plugin uses advanced security rules that provide huge levels of protection and it is important that your site uses it. This step is important to submit your website and/or domain to an approved HSTS list. Google officially compiles this list and it is used by Chrome, Firefox, Opera, Safari, IE11 and Edge. You can forward your site to the official HSTS preload directory. Cross Site Request Forgery (CSRF) is a common attack with the installation of Headers Security Advanced & HSTS WP will help you mitigate CSRF on your WordPress site. 6 * Version: 5.0.3 46 * Version: 5.0.3 7 7 * Text Domain: headers-security-advanced-hsts-wp 8 8 * Domain Path: /languages … … 24 24 } 25 25 26 const HSTS_PLUGIN_VERSION = '5.0.3 4';26 const HSTS_PLUGIN_VERSION = '5.0.3'; 27 27 const HSTS_STANDARD_VALUE_CSP = 'upgrade-insecure-requests;'; 28 28 const HSTS_STANDARD_VALUE_PERMISSIONS_POLICY = 'accelerometer=(), autoplay=(), camera=(), cross-origin-isolated=(), display-capture=(self), encrypted-media=(), fullscreen=*, geolocation=(self), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), payment=*, picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), xr-spatial-tracking=(), gamepad=(), serial=()'; … … 391 391 return "ALLOW-FROM $allow_from_url"; 392 392 } 393 } else {394 return $x_frame_options;395 }393 394 395 396 396 } 397 397 … … 486 486 487 487 function hsts_plugin_delete_old_options(): void { 488 // Last referenced by plugin version 5.0.3 4.488 // Last referenced by plugin version 5.0.3. 489 489 delete_option( 'HEADERS_SECURITY_ADVANCED_HSTS_WP_PLUGIN_VERSION' ); 490 490 } -
headers-security-advanced-hsts-wp/trunk/readme.txt
r3048614 r3050548 5 5 Requires at least: 4.7 6 6 Tested up to: 6.4 7 Stable tag: 5.0.3 47 Stable tag: 5.0.3 8 8 Requires PHP: 7.4 9 9 License: GPLv2 or later … … 259 259 == Changelog == 260 260 261 = 5.0.3 4=262 We don't want to tell you what to do, but here's the point: if you've updated the Headers Security Advanced & HSTS WP plugin last time, you've seen that when we suggest doing so, we don't just say it and leave it at that. Well, with this 5.0.3 4version we've added and fixed a lot (we got rid of some bugs, tidied up some pesky pixels and updated the graphics) and it all works great. Are we agreed? Touch "update" and we'll provide you with the most beautiful, fastest, and most impressive plugin around. Enjoy!263 - Upgrade: New feature to customize headers (X-Frame-Options and Permissions-Policy), if not customized will use an automated value from OWASP.261 = 5.0.3 = 262 We don't want to tell you what to do, but here's the point: if you've updated the Headers Security Advanced & HSTS WP plugin last time, you've seen that when we suggest doing so, we don't just say it and leave it at that. Well, with this 5.0.3 version we've added and fixed a lot (we got rid of some bugs, tidied up some pesky pixels and updated the graphics) and it all works great. Are we agreed? Touch "update" and we'll provide you with the most beautiful, fastest, and most impressive plugin around. Enjoy! 263 - 264 264 - Delete: deleted the 'X-XSS-Protection' header because this functionality is no longer in the standards path.
Note: See TracChangeset
for help on using the changeset viewer.