shinkan-jinkendo

History

Lars 161d520329 All checks were successful Deploy Development / deploy (push) Successful in 36s Details Test Suite / pytest-backend (push) Successful in 23s Details Test Suite / lint-backend (push) Successful in 0s Details Test Suite / build-frontend (push) Successful in 7s Details Test Suite / playwright-tests (push) Successful in 23s Details feat: implement CSP and security headers for API responses - Added Content-Security-Policy header to nginx configuration for SPA, enhancing security against XSS attacks. - Introduced middleware in FastAPI to set X-Content-Type-Options header, preventing MIME-sniffing vulnerabilities. - Updated production readiness audit and access layer endpoint audit to reflect security enhancements and ongoing governance practices. - Added tests to verify the presence of security headers in API responses, ensuring compliance with security standards.		2026-05-07 11:09:06 +02:00
..
docs	feat: implement CSP and security headers for API responses	2026-05-07 11:09:06 +02:00
rules	feat: enhance access layer governance and visibility checks	2026-05-05 22:09:25 +02:00