1.0.0-rc.4 is the next release candidate
🗞️ Next steps
We are planning to release one or two more release candidate versions before a stable 1.0.0 version will be released.
✅ Migration Guide
This version may include ⚠️ breaking changes but don't worry, we have prepared migration guide for you 😉
In this version, we have updated ContentSecurityConfiguration by a mile, specifically we have enabled strict CSP by default to spread good security practices.
If you are experiencing some issues with CSP, check out the new documentation about it:
- Basic CSP usage -> https://nuxt-security.vercel.app/documentation/headers/csp
- Advanced & Strict CSP -> https://nuxt-security.vercel.app/documentation/advanced/strict-csp
👉 Changelog
compare changes
🚀 Enhancements
- hashStyles option
- Strict CSP by default
- SRI hashes for SSG mode
- Subresource Integrity
🩹 Fixes
- allow csp value to be false
📖 Documentation
- Advanced documentation about Content Security Policy
- Cross-Origin-Resource-Policy header Error on Paypal Checkout -> FAQ
⚠️ Breaking Changes
- Strict CSP
❤️ Contributors
- vejja (@vejja)
- Jonas Thelemann (@dargmuesli)
- Geeky Shows (@geekyshow1)