Obsolete Content Security Policy (CSP) Header Found
- Risk:
Informational
- Type:
- Passive
- CWE:
- 693
- Summary
- The “X-Content-Security-Policy” and “X-WebKit-CSP” headers are no longer recommended.
- Solution
- Ensure that your web server, application server, load balancer, etc. is configured to set the Content-Security-Policy header.