[wp-trac] [WordPress Trac] #51438: Use CSP directive upgrade-insecure-requests when using HTTPS
WordPress Trac
noreply at wordpress.org
Tue Jul 6 23:44:02 UTC 2021
#51438: Use CSP directive upgrade-insecure-requests when using HTTPS
------------------------------------------+---------------------
Reporter: flixos90 | Owner: (none)
Type: enhancement | Status: new
Priority: normal | Milestone: 5.9
Component: Security | Version: 5.7
Severity: normal | Resolution:
Keywords: needs-patch needs-unit-tests | Focuses:
------------------------------------------+---------------------
Changes (by westonruter):
* version: => 5.7
* milestone: Awaiting Review => 5.9
Comment:
I think we can add this early in 5.9.
@flixos90 Any reason why `meta` tag preferred over HTTP response header?
--
Ticket URL: <https://core.trac.wordpress.org/ticket/51438#comment:3>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list