Branch: refs/heads/master Home: https://github.com/phpmyadmin/phpmyadmin Commit: f6b08d3ffbdf0cda5fdaa1489c3d4b2bb0ef378e https://github.com/phpmyadmin/phpmyadmin/commit/f6b08d3ffbdf0cda5fdaa1489c3d... Author: Ng Yik Phang ngyikp@gmail.com Date: 2017-03-30 (Thu, 30 Mar 2017)
Changed paths: M libraries/Header.php
Log Message: ----------- Add `object-src 'none'` to Content Security Policy header
There’s no need to embed Flash or Java, so just turn off the ability to embed them for security.
Ref: https://github.com/phpmyadmin/phpmyadmin/issues/12437
Signed-off-by: Ng Yik Phang ngyikp@gmail.com
Commit: 37b87d7d44948c4b2495147c7878c922cc7f2819 https://github.com/phpmyadmin/phpmyadmin/commit/37b87d7d44948c4b2495147c7878... Author: Michal Čihař michal@cihar.com Date: 2017-04-03 (Mon, 03 Apr 2017)
Changed paths: M libraries/Header.php
Log Message: ----------- Merge pull request #13134 from ngyikp/master
Add `object-src 'none'` to Content Security Policy header
Compare: https://github.com/phpmyadmin/phpmyadmin/compare/691349f1ab31...37b87d7d4494
-
Michal Čihař