On WebPageTest, this site was scoring very poorly on the Security Score. So I decided to fix that. Since this site is deployed on Netlify, based on their documentation, all I needed to do was add the required headers to my netlify.toml
file (at the end).
|
|
Your value for the Content-Security-Policy
header may vary based on the resources you use. MDN has some great examples on its CSP page.
And voila! The rating shot to an A+!!!