HOME
ABOUT
- RESULTS
- differences
- BENEFITS
- HISTORY
- TEAM
- LOCATION
- FACILITIES
- BANKING
- MEMBERSHIPS
- APPROVALS
- LICENCES
- SUPPLIERS
- SPONSORSHIPS
- MEDIA
- PRIVACY
AUCTIONS
SHIPPING
FEES
- TS REWARDS
TOOLS
guides
FAQ
CONTACT
- CONNECT

VEHICLES
BRAND
- JAPANESE CARS
  - DAIHATSU
  - EUNOS
  - FORD
  - HONDA
  - ISUZU
  - LEXUS
  - MAZDA
  - MITSUBISHI
  - MITSUOKA
  - NISSAN
  - SUBARU
  - SUZUKI
  - TOYOTA
- GERMAN CARS
- AMERICAN CARS
- BRITISH CARS
- ITALIAN CARS
- FRENCH CARS
- SWEDISH CARS
- KOREAN CARS
TYPE
- mobility
- VENDING
- instruction
- TAXIS
- AMBULANCES
- FIRE ENGINES
- HEARSES
- LIMOUSINES
- COMMERCIAL
CLASS
FUEL
TRUCKS
minitrucks
- DAIHATSU
- HONDA
- MAZDA
- MITSUBISHI
- NISSAN
- SUBARU
- SUZUKI
- DUMP
- CRANE
- CAMPER
- REFRIGERATED
- 4WD
- NEW
BUSES
MOTORHOMES
- YAHOO!
- RAKUTEN
- DEALER

PARTS
- FREE REPORT
- PARTS CONTAINERS
- PARTS SYSTEMS
- PARTS PROTECTION
- BODY SHELLS
- DISMANTLING
- ONLINE PARTS
- NEW PARTS
- INTERIOR PARTS
- EXTERIOR PARTS
  - BONNETS
  - BUMPERS
  - GRILLES
  - FENDERS
  - DOORS
  - TRUNKS
  - SPOILERS
  - LIGHTS
  - EMBLEMS
  - CAMERAS
- ENGINES
- TRANSMISSIONS
- WHEELS & TYRES
  - WHEELS
  - TYRES
CUTS
PERFORMANCE PARTS
TRUCK PARTS
MOTORBIKE PARTS
- MOTORBIKE ENGINES
- MOTORBIKE ACCESSORIES

MOTORBIKES
MARINE
FORKLIFTS
MACHINERY
AGRICULTURAL
OTHER
COUNTRY
- AUSTRALIA
- CANADA
- KENYA
- MYANMAR
- NEW ZEALAND
- PAKISTAN
- TANZANIA
- UNITED STATES

CARVIEW

MOTORHOMES

Select Language

HTTP/2 200 date: Thu, 25 Dec 2025 15:08:27 GMT content-type: text/html; charset=utf-8 vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With etag: W/"bd8c0c9236fb5922a137af0bc4cf9580" cache-control: max-age=0, private, must-revalidate strict-transport-security: max-age=31536000; includeSubdomains; preload x-frame-options: deny x-content-type-options: nosniff x-xss-protection: 0 referrer-policy: no-referrer-when-downgrade content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com github.githubassets.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com wss://alive-staging.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com marketplace-screenshots.githubusercontent.com/ copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com github.githubassets.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/ server: github.com content-encoding: gzip accept-ranges: bytes set-cookie: _gh_sess=O9RDVez6KIAMzav8z17O5Itqe1%2BmCIYV6EaNhDxwehUN%2BmuRQEA1PpcB4Uwn81sGmjruvQFEwG8eL5xcJaL9dqxWqELcAgyadx%2BB%2Bhq3nlDCCf01QsLjDXMEikg8J5acE1LlCRBkagpSx7OmkniW%2Ft52i1S2Hhdip1ax8%2BC%2Fz3Ig2gwQN4v5YnXjdwGpsxxZuP9d1wzCg6qDpBKqvCRyhmapcO2so4MAY5xZEwNv48KxEmP%2B%2FOAyV3lXtq2%2F77qlQFR7LTFJ1AOOVsjx2XL1Ug%3D%3D--5lpzux1JnyyrAcPL--w5qtP3lU7kMxQOb%2BV%2FJA4Q%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax set-cookie: _octo=GH1.1.1007019465.1766675306; Path=/; Domain=github.com; Expires=Fri, 25 Dec 2026 15:08:26 GMT; Secure; SameSite=Lax set-cookie: logged_in=no; Path=/; Domain=github.com; Expires=Fri, 25 Dec 2026 15:08:26 GMT; HttpOnly; Secure; SameSite=Lax x-github-request-id: B330:2C1316:2CD90E1:356FA3D:694D5369 Build + Test · Workflow runs · github/secure_headers · GitHub

View all features
- BY COMPANY SIZE
  Enterprises
  Small and medium teams
  Startups
  Nonprofits
- BY USE CASE
  App Modernization
  DevSecOps
  DevOps
  CI/CD
  View all use cases
- BY INDUSTRY
  Healthcare
  Financial services
  Manufacturing
  Government
  View all industries
View all solutions
- EXPLORE BY TOPIC
  AI
  Software Development
  DevOps
  Security
  View all topics
- EXPLORE BY TYPE
  Customer stories
  Events & webinars
  Ebooks & reports
  Business insights
  GitHub Skills
- SUPPORT & SERVICES
  Documentation
  Customer support
  Community forum
  Trust center
  Partners
- COMMUNITY
  GitHub SponsorsFund open source developers
- PROGRAMS
  Security Lab
  Maintainer Community
  Accelerator
  Archive Program
- REPOSITORIES
  Topics
  Trending
  Collections
- ENTERPRISE SOLUTIONS
  Enterprise platformAI-powered developer platform
- AVAILABLE ADD-ONS
  GitHub Advanced SecurityEnterprise-grade security features
  Copilot for BusinessEnterprise-grade AI features
  Premium SupportEnterprise-grade 24/7 support
Pricing

Search code, repositories, users, issues, pull requests...

Clear

Search syntax tips

Provide feedback

We read every piece of feedback, and take your input very seriously.

Include my email address so I can be contacted

Saved searches

Use saved searches to filter your results more quickly

Name

Query

To see all available qualifiers, see our documentation.

Appearance settings

You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session.

Dismiss alert

github / secure_headers Public

Notifications You must be signed in to change notification settings
Fork 253
Star 3.3k

Code
Issues 14
Pull requests 7
Actions
Projects
Models
Security
Insights

Additional navigation options

Code
Issues
Pull requests
Actions
Projects
Models
Security
Insights

Actions: github/secure_headers

Actions

All workflows
Workflows
- Build + Test Build + Test
- CodeQL CodeQL
- Copilot code review Copilot code review
- Copilot coding agent Copilot coding agent
- Dependabot Updates Dependabot Updates
- GitHub Release GitHub Release
Management
- Caches
- Deployments

Build + Test

Actions

Loading...
Loading

will be ignored since log searching is not yet available

Show workflow options

Create status badge

Uh oh!

There was an error while loading. Please reload this page.

build.yml

will be ignored since log searching is not yet available

214 workflow runs

Filter by Event

Sorry, something went wrong.

Filter

Sorry, something went wrong.

No matching events.

Filter by Status

Sorry, something went wrong.

Filter

Sorry, something went wrong.

No matching statuses.

Filter by Branch

Sorry, something went wrong.

Filter

Sorry, something went wrong.

No matching branches.

Filter by Actor

Sorry, something went wrong.

Filter

Sorry, something went wrong.

No matching users.

Bump ruby/setup-ruby from 1.270.0 to 1.275.0 (#572) Build + Test #407: Commit 8c2884b pushed by KyFaSt

59s main

main

59s

View workflow file

Bump ruby/setup-ruby from 1.270.0 to 1.275.0 Build + Test #406: Pull request #572 opened by dependabot bot

57s dependabot/github_actions/ruby/setup-ruby-1.275.0

dependabot/github_actions/ruby/setup-ruby-1.275.0

57s

View #572
View workflow file

Bump ruby/setup-ruby from 1.270.0 to 1.275.0 Build + Test #405: Commit 9468a87 pushed by dependabot bot

58s dependabot/github_actions/ruby/setup-ruby-1.275.0

dependabot/github_actions/ruby/setup-ruby-1.275.0

58s

View #572
View workflow file

prepend SecureHeaders::ViewHelpers when loaded in a Rails context Build + Test #404: Commit 5051880 pushed by rei-moo

55s rei-moo/csp-nonce-conflict

rei-moo/csp-nonce-conflict

55s

View workflow file

7.2 release Build + Test #403: Pull request #566 synchronize by fletchto99

31s feature-7.2

feature-7.2

31s

View #566
View workflow file

Merge branch 'main' into feature-7.2 Build + Test #402: Commit 2801582 pushed by fletchto99

32s feature-7.2

feature-7.2

32s

View #566
View workflow file

Add Configuration.disable! option (fixes #540) Build + Test #401: Commit e5f347e pushed by fletchto99

30s feature-7.2

feature-7.2

30s

View workflow file

Add Configuration.disable! to completely disable secure_headers Build + Test #400: Commit 6ac6e72 pushed by fletchto99

29s feature-7.2

feature-7.2

29s

View workflow file

Add Configuration.disable! to completely disable secure_headers (#568) Build + Test #399: Commit 2967cd5 pushed by fletchto99

30s feature-7.2

feature-7.2

30s

View workflow file

Add Configuration.disable! to completely disable secure_headers Build + Test #398: Pull request #568 synchronize by rei-moo

28s copilot/add-static-config-option

copilot/add-static-config-option

28s

View #568
View workflow file

Update spec/lib/secure_headers/middleware_spec.rb Build + Test #397: Commit d922c87 pushed by rei-moo

30s copilot/add-static-config-option

copilot/add-static-config-option

30s

View #568
View workflow file

Add Configuration.disable! to completely disable secure_headers Build + Test #396: Pull request #568 synchronize by Copilot AI

34s copilot/add-static-config-option

copilot/add-static-config-option

34s

View #568
View workflow file

Document that disable!/default must be set at startup Build + Test #395: Commit 6a78f95 pushed by Copilot AI

31s copilot/add-static-config-option

copilot/add-static-config-option

31s

View workflow file

Add Configuration.disable! to completely disable secure_headers Build + Test #394: Pull request #568 synchronize by fletchto99

30s copilot/add-static-config-option

copilot/add-static-config-option

30s

View #568
View workflow file

Apply suggestions from code review Build + Test #393: Commit ccae709 pushed by fletchto99

34s copilot/add-static-config-option

copilot/add-static-config-option

34s

View workflow file

7.2 release Build + Test #392: Pull request #566 synchronize by fletchto99

47s feature-7.2

feature-7.2

47s

View #566
View workflow file

Don't set upgrade-insecure-requests directive for HTTP requests (#570) Build + Test #391: Commit 19de22b pushed by fletchto99

48s feature-7.2

feature-7.2

48s

View workflow file

Don't set upgrade-insecure-requests directive for HTTP requests Build + Test #390: Pull request #570 synchronize by Copilot AI

53s copilot/fix-upgrade-insecure-requests

copilot/fix-upgrade-insecure-requests

53s

View #570
View workflow file

Revert .gitignore changes Build + Test #389: Commit 1c66c22 pushed by Copilot AI

48s copilot/fix-upgrade-insecure-requests

copilot/fix-upgrade-insecure-requests

48s

View #570
View workflow file

Add Configuration.disable! to completely disable secure_headers Build + Test #388: Pull request #568 synchronize by Copilot AI

38s copilot/add-static-config-option

copilot/add-static-config-option

38s

View #568
View workflow file

Revert .gitignore changes Build + Test #387: Commit 5ab4183 pushed by Copilot AI

36s copilot/add-static-config-option

copilot/add-static-config-option

36s

View workflow file

Add Configuration.disable! to completely disable secure_headers Build + Test #386: Pull request #568 synchronize by Copilot AI

31s copilot/add-static-config-option

copilot/add-static-config-option

31s

View #568
View workflow file

Raise AlreadyConfiguredError when disable! and default conflict Build + Test #385: Commit af7f61b pushed by Copilot AI

31s copilot/add-static-config-option

copilot/add-static-config-option

31s

View workflow file

Add Configuration.disable! to completely disable secure_headers Build + Test #384: Pull request #568 synchronize by Copilot AI

51s copilot/add-static-config-option

copilot/add-static-config-option

51s

View #568
View workflow file

Address PR review feedback: Fix edge cases and improve consistency Build + Test #383: Commit 8f188da pushed by Copilot AI

49s copilot/add-static-config-option

copilot/add-static-config-option

49s

View workflow file

Previous 1 2 3 4 5 … 8 9 Next

You can’t perform that action at this time.

HOME
ABOUT
AUCTIONS
SHIPPING
FEES
TOOLS
HOW
FAQ
CONTACT

Original Source | Taken Source

Actions: github/secure_headers

Actions

Build + Test Build + Test Actions Loading... Loading Sorry, something went wrong. Uh oh! There was an error while loading. Please reload this page.

Build + Test

Build + Test

Actions

Loading...
Loading