security headers

2023-10-30 15:37:08 +01:00 · 2023-10-30 15:37:08 +01:00 · 0efcd74902
commit 0efcd74902
parent e35b84188e
1 changed files with 9 additions and 1 deletions
--- a/netlify.toml
+++ b/netlify.toml
@ -1,4 +1,12 @@
 [build]
 command = "npm run build"
 publish = "build"
-functions = "functions/"
+functions = "functions/"
+
+[[headers]]
+  for = "/*"
+  [headers.values]
+    X-Frame-Options = "SAMEORIGIN"
+    X-XSS-Protection = "0"
+    X-Content-Type-Options = "nosniff"
+    Content-Security-Policy = "default-src 'self' res.cloudinary.com  use.typekit.net;"