Skip to content

Pull requests: HailBytes/security-headers

New pull request New
40 Open 21 Closed
40 Open 21 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

fix(permissions-policy): recognize any non-wildcard directive value as restrictive
#76 opened Jun 21, 2026 by dmchaledev Contributor Loading…
fix(referrer-policy): parse comma-separated fallback list per spec
#75 opened Jun 20, 2026 by dmchaledev Contributor Loading…
Add --min-grade flag for configurable CI gate threshold
#74 opened Jun 19, 2026 by dmchaledev Contributor Loading…
2 of 6 tasks
feat(cli): add --fail-on grade option for configurable CI gate threshold
#73 opened Jun 18, 2026 by dmchaledev Contributor Loading…
5 tasks done
fix(csp): don't penalize unsafe-inline when nonce/hash present (CSP2)
#72 opened Jun 17, 2026 by dmchaledev Contributor Loading…
chore(deps-dev): bump @types/node from 20.19.41 to 25.9.3
#70 opened Jun 15, 2026 by dependabot Bot Loading…
1
fix(csp): detect scheme-only permissive sources (e.g. https:) in CSP directives
#67 opened Jun 13, 2026 by dmchaledev Contributor Loading…
2 tasks done
fix(csp): detect scheme-only sources (e.g. https:) as permissive in sensitive directives
#64 opened Jun 10, 2026 by dmchaledev Contributor Loading…
3 tasks done
Enforce test coverage thresholds in CI
#63 opened Jun 9, 2026 by dmchaledev Contributor Loading…
3 tasks
fix: validate --timeout CLI arg to prevent silent NaN abort
#61 opened Jun 8, 2026 by dmchaledev Contributor Loading…
2 of 4 tasks
docs: add GitHub Actions CI integration examples
#60 opened Jun 7, 2026 by dmchaledev Contributor Loading…
3 tasks
fix(csp): flag wildcard object-src as a security risk
#59 opened Jun 6, 2026 by dmchaledev Contributor Loading…
3 tasks done
fix(csp): flag scheme-only sources (https:, data:) as permissive in sensitive CSP directives
#58 opened Jun 5, 2026 by dmchaledev Contributor Loading…
3 tasks done
ci: add typecheck and test gates to publish workflow
#57 opened Jun 4, 2026 by dmchaledev Contributor Loading…
2 tasks
feat(cli): add --fail-on flag to make the CI gate threshold configurable
#56 opened Jun 3, 2026 by dmchaledev Contributor Loading…
2 of 5 tasks
feat(cli): add --min-grade flag for configurable CI exit threshold
#55 opened Jun 2, 2026 by dmchaledev Contributor Loading…
5 tasks
chore(deps-dev): bump @vitest/coverage-v8 from 4.1.7 to 4.1.8
#54 opened Jun 1, 2026 by dependabot Bot Loading…
1
chore(deps-dev): bump vitest from 4.1.7 to 4.1.8
#53 opened Jun 1, 2026 by dependabot Bot Loading…
1
fix(csp): flag object-src wildcard as a high-risk misconfiguration
#52 opened Jun 1, 2026 by dmchaledev Contributor Loading…
3 tasks done
Update triage state with issue #8 scoring bug fix and skip tracking
#46 opened May 26, 2026 by BodenMcHale Contributor Loading…
Update triage state with new CSP wildcard detection findings
#45 opened May 26, 2026 by BodenMcHale Contributor Loading…
Update triage state with issue 17 action and skip tracking
#44 opened May 26, 2026 by BodenMcHale Contributor Loading…
Update triage state with issue #18 security bug analysis
#43 opened May 26, 2026 by BodenMcHale Contributor Loading…
Update triage state with issue #20 action and skip tracking
#41 opened May 26, 2026 by BodenMcHale Contributor Loading…
Update triage state with latest run and skip entries
#40 opened May 26, 2026 by BodenMcHale Contributor Loading…
ProTip! Find all pull requests that aren't related to any open issues with -linked:issue.