pages-core icon indicating copy to clipboard operation
pages-core copied to clipboard

Published 20 hours ago verified publisher icon cloud-gov

HTTP Strict Transport Security (HSTS) Max- Age Value Too Low

Open amirbey opened this issue 4 years ago • 1 comments

Background (Optional)

as per auth scanned report, hsts max-age should be increased

Acceptance Criteria

  • [x] HSTS max-age updated (max-age=31536000)
  • [x] Change made live via deploy of Federalist

After evaluating, edit this part:

Level of effort - low

Implementation outline (if higher than "low" effort):

  • [ ] <TODO>

amirbey avatar Sep 27 '21 17:09 amirbey

PR - https://github.com/18F/federalist/pull/3639

amirbey avatar Sep 29 '21 21:09 amirbey