Make use of Django's CSP support
Django 6.0 has landed Content Security Policy support. The absence of CSP is one of the two common DAST security findings we're being reported.
Evaluate the impact of adding a default CSP in and, if minor, do so.
Django 6.0 has landed Content Security Policy support. The absence of CSP is one of the two common DAST security findings we're being reported.
Evaluate the impact of adding a default CSP in and, if minor, do so.