-
Notifications
You must be signed in to change notification settings - Fork 1
/
gatsby-config.js
32 lines (31 loc) · 938 Bytes
/
gatsby-config.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
require("dotenv").config({
path: `.env.${process.env.NODE_ENV}`,
})
module.exports = {
siteMetadata: {
title: `GatsbyConf 2022 Security Workshop`,
siteUrl: `https://www.yourdomain.tld`,
description: `<h3 onload="alert(1)">tester</h3>`,
},
plugins: [
"gatsby-plugin-image",
"gatsby-plugin-sharp",
"gatsby-plugin-mdx",
"gatsby-transformer-sharp",
{
resolve: `gatsby-plugin-gatsby-cloud`,
options: {
mergeSecurityHeaders: false,
headers: {
"/*": [
`X-Frame-Options: DENY`,
`X-XSS-Protection: 1; mode=block`,
`X-Content-Type-Options: nosniff`,
`Referrer-Policy: same-origin`,
//`Content-Security-Policy: upgrade-insecure-requests; default-src 'self'; `
],
},
},
},
]
}