Skip to content

Releases: Firesphere/silverstripe-csp-headers

Improved script parsing through insertHeadTag

24 Sep 02:44
@Firesphere Firesphere
1.5.0
f345b4e
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Improved script parsing through insertHeadTag Latest
Latest

When using insertHeadTag, the original method used with strip_tags was too trigger-happy and could potentially strip out valid/wanted HTML from javascript, where it contained e.g. a variable with HTML to be rendered by the javascript (templates etc.)

The new solution is to take the contents of the <script></script> tags instead.

Assets 2

[bugfix] in_cms wasn't set to a sane default

06 Aug 23:23
@Firesphere Firesphere
1.4.4
c7b94e8
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
[bugfix] in_cms wasn't set to a sane default 
1.4.4

Add default value for in_cms
Assets 2

Disable in CMS

06 Aug 22:33
@Firesphere Firesphere
1.4.3
4407733
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Disable in CMS
  • Add option to disable the check in CMS.
Assets 2

Only call header when wanted

21 Jul 01:31
@Firesphere Firesphere
1.4.2
f0a96d6
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Only call header when wanted 
1.4.2

Remove duplicate add call
Assets 2

Harden datarecord check

21 Jul 00:06
@Firesphere Firesphere
1.4.1
2aa4d5f
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Harden datarecord check 
1.4.1

Harden datarecord check
Assets 2

Add various other headers

16 Jul 23:43
@Firesphere Firesphere
1.4.0
e9b9c8c
Compare
Choose a tag to compare
Add various other headers
  • Added various other headers
  • Improved and split out documentation
Assets 2

Minor updates

10 Jul 23:14
@Firesphere Firesphere
1.3.1
360b83c
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Minor updates
  • Updated convertor
  • Fixed up tests
Assets 2

Full release of convertor

29 Jun 23:27
@Firesphere Firesphere
1.3.0
59d0156
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Full release of convertor
  • Add Connect as option to the CMS
Assets 2

Improved convertor

29 Jun 23:08
@Firesphere Firesphere
1.2.6
5303e43
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Improved convertor

Improved the header to yml convertor.

Assets 2

Add connect-src from CMS

29 Jun 22:33
@Firesphere Firesphere
1.2.5
b135761
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Add connect-src from CMS 
1.2.5

Add connect-src, add searchable for type
Assets 2