Improves the security headers

Attempts to fix all the security issues reported by the Mozilla Observatory: https://observatory.mozilla.org/analyze/viz.scrapd.org Fixes #194
scrapd · Jan 27, 2020 · ececd17 · ececd17
1 parent 9fb8263
commit ececd17
Showing 1 changed file with 9 additions and 0 deletions.
diff --git a/csp.js b/csp.js
@@ -1,10 +1,19 @@
+<<<<<<< HEAD
 const helmet = require('helmet');
 const uuidv4 = require('uuid/v4');
 
 // Configuration values mostly come from this talk:
 // https://pyvideo.org/pybay-2019/browser-security-with-http-headers.html
 // export default function csp(app) {
 module.exports = function csp(app) {
+=======
+import helmet from 'helmet';
+import uuidv4 from 'uuid/v4';
+
+// Configuration values mostly come from this talk:
+// https://pyvideo.org/pybay-2019/browser-security-with-http-headers.html
+export default function csp(app) {
+>>>>>>> Improves the security headers
   // Create a nonce on every request and make it available to other middleware
   app.use((req, res, next) => {
     res.locals.nonce = Buffer.from(uuidv4()).toString('base64');