go-api

core/go-api

Fork 0

Commit graph

Author	SHA1	Message	Date
Snider	0cce70082b	fix: correct misleading IsDevelopment comments in WithSecure Co-Authored-By: Virgil <virgil@lethean.io>	2026-02-20 23:15:29 +00:00
Snider	6bb7195cca	feat: add WithSecure security headers middleware Wraps gin-contrib/secure to set HSTS (1 year, includeSubdomains), X-Frame-Options DENY, X-Content-Type-Options nosniff, and Referrer-Policy strict-origin-when-cross-origin on all responses. Co-Authored-By: Virgil <virgil@lethean.io> Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-02-20 23:10:52 +00:00

Author

SHA1

Message

Date

Snider

0cce70082b

fix: correct misleading IsDevelopment comments in WithSecure

Co-Authored-By: Virgil <virgil@lethean.io>

2026-02-20 23:15:29 +00:00

Snider

6bb7195cca

feat: add WithSecure security headers middleware

Wraps gin-contrib/secure to set HSTS (1 year, includeSubdomains),
X-Frame-Options DENY, X-Content-Type-Options nosniff, and
Referrer-Policy strict-origin-when-cross-origin on all responses.

Co-Authored-By: Virgil <virgil@lethean.io>
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

2026-02-20 23:10:52 +00:00

2 commits