Felipe Cardoso 568aad3673 Add E2E tests for security headers ...

- Implemented tests to verify OWASP-compliant security headers, including X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy, and Content-Security-Policy.
- Ensured deprecated headers like X-XSS-Protection are not set.
- Validated security headers across multiple routes.
- Updated Playwright configuration to include the new test suite.

2025-12-10 14:53:40 +01:00

4.4 KiB

Raw Blame History

View Raw