Skip to content

Instantly share code, notes, and snippets.

What would you like to do?
header('X-XSS-Protection: 1; mode=block');
header('X-Content-Type: nosniff');
header('X-Frame-Options: DENY');
// If you have sensitive information in any of your URLS, use 'no-referrer' as a value instead)
header('Referrer-Policy: no-referrer-when-downgrade');
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment