CSP header

  • Resolved John Doe

    (@kmulders)


    1 year, 8 months ago

    I’ve installed the plugin and got an A+ score at SecurityHeaders.com. So far so good! ??

    We also measure our ‘domain score’ via SecurityScorecard.io. Here it says that the CSP-header isn’t set up perfectly, which downgrades our score. I can provide more information from this tool, to optimize the settings. Would that be helpful?

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Author Andrea Ferro

    (@unicorn03)

    Hi @kmulders, thanks for using the plugin and for the open topic. I am Andrea and I will help you with your issue found.

    I am currently working on the version where via the advanced settings you will be able to customize the CSP values with an external policy generated tool (this should solve the issue you encountered) with the next updates.

    However, I would be happy to know the tool you are using so I can test it with other internal checks I will do before releasing the update

    Thread Starter John Doe

    (@kmulders)

    Thanks for your quick reply @unicorn03! A screenshot with details about this issue in our SecurityScorecard-account can be found here.

    Plugin Author Andrea Ferro

    (@unicorn03)

    Hi @kmulders, thanks for your response and feedback I will update you soon on the release of the new version that will implement in the settings the ability to customize or leave the standard or custom CSP.

    For further inquiries I am here to help you

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘CSP header’ is closed to new replies.