Branch: refs/heads/master Home: https://github.com/phpmyadmin/phpmyadmin Commit: f6b08d3ffbdf0cda5fdaa1489c3d4b2bb0ef378e https://github.com/phpmyadmin/phpmyadmin/commit/f6b08d3ffbdf0cda5fdaa1489c3d... Author: Ng Yik Phang <ngyikp@gmail.com> Date: 2017-03-30 (Thu, 30 Mar 2017) Changed paths: M libraries/Header.php Log Message: ----------- Add `object-src 'none'` to Content Security Policy header There’s no need to embed Flash or Java, so just turn off the ability to embed them for security. Ref: https://github.com/phpmyadmin/phpmyadmin/issues/12437 Signed-off-by: Ng Yik Phang <ngyikp@gmail.com> Commit: 37b87d7d44948c4b2495147c7878c922cc7f2819 https://github.com/phpmyadmin/phpmyadmin/commit/37b87d7d44948c4b2495147c7878... Author: Michal Čihař <michal@cihar.com> Date: 2017-04-03 (Mon, 03 Apr 2017) Changed paths: M libraries/Header.php Log Message: ----------- Merge pull request #13134 from ngyikp/master Add `object-src 'none'` to Content Security Policy header Compare: https://github.com/phpmyadmin/phpmyadmin/compare/691349f1ab31...37b87d7d4494