cameleer-website

cameleer/cameleer-website

Fork 0

Commit Graph

Author	SHA1	Message	Date
hsiegeln	2945c63f2a	Document CSP directive rationale and strengthen inline-script assertion Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-04-24 17:11:16 +02:00
hsiegeln	3432d509df	Add security-headers middleware with strict CSP (TDD) Exports buildSecurityHeaders() (pure, testable) and wires it into the Astro onRequest middleware. Adds astro:middleware alias in vitest config so the unit tests run outside Astro's build context. 14 tests pass (7 existing + 7 new). Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-04-24 17:06:45 +02:00

Author

SHA1

Message

Date

hsiegeln

2945c63f2a

Document CSP directive rationale and strengthen inline-script assertion

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-04-24 17:11:16 +02:00

hsiegeln

3432d509df

Add security-headers middleware with strict CSP (TDD)

Exports buildSecurityHeaders() (pure, testable) and wires it into the
Astro onRequest middleware. Adds astro:middleware alias in vitest config
so the unit tests run outside Astro's build context. 14 tests pass (7
existing + 7 new).

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-04-24 17:06:45 +02:00

2 Commits