From 7cd66e20d0529b9bab07fd77849cbfae225e7a4d Mon Sep 17 00:00:00 2001 From: Omar Roth Date: Fri, 10 May 2019 16:48:38 -0500 Subject: [PATCH] Fix typo in X-XSS-Protection --- src/invidious.cr | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/invidious.cr b/src/invidious.cr index eb1b5104..31b8904e 100644 --- a/src/invidious.cr +++ b/src/invidious.cr @@ -188,7 +188,7 @@ proxies = PROXY_LIST before_all do |env| host_url = make_host_url(config, Kemal.config) - env.response.headers["X-XSS-Protection"] = "1; mode=block;" + env.response.headers["X-XSS-Protection"] = "1; mode=block" env.response.headers["X-Content-Type-Options"] = "nosniff" env.response.headers["Content-Security-Policy"] = "default-src blob: data: 'self' #{host_url} 'unsafe-inline' 'unsafe-eval'; media-src blob: 'self' #{host_url} https://*.googlevideo.com:443" env.response.headers["Referrer-Policy"] = "same-origin"