A fork of Flask-Talisman with certain changes to better fit my backend server.
Because the license requires this, I will put the change log here:
- Removed files:
.travis.ymlCONTRIBUTING.mdnoxfile.pyREADME.rst- replaced with this file (README.md)
- Removed the example app
- Dropped Python 2 support
- Added Gitpod configuration and Dockerfile
- Cleaned up
setup.py - Option
referrer_policycan beNoneto use the default - Removed all the options except:
+ referrer_policy
+ session_cookie_secure
+ session_cookie_http_only
+ force_file_save
+ frame_options- Renamed the nosniff option
- Added type defs
This is not an official Google or RDIL product, experimental or otherwise.
There is no silver bullet for web application security. Talisman can help, but security is more than just setting a few headers. Any public-facing web application should have a comprehensive approach to security.