Skip to content

security: mitigate cross-origin credential leaks, prevent CRLF header injection, and disable XML DTD processing#2170

Open
insaf021 wants to merge 2 commits into
googleapis:mainfrom
insaf021:security/harden-http-security-credential-crlf-xxe
Open

security: mitigate cross-origin credential leaks, prevent CRLF header injection, and disable XML DTD processing#2170
insaf021 wants to merge 2 commits into
googleapis:mainfrom
insaf021:security/harden-http-security-credential-crlf-xxe

security: prevent redirect credential leaks, validate headers for CRL…

211e3f7
Select commit
Loading
Failed to load commit list.
Google CLA / cla/google succeeded Jul 4, 2026 in 7s

✅ All contributors are covered under a CLA with Google

See https://cla.developers.google.com/ for more info about Google's Contributor License Agreement (CLA).

ℹ️ Googlers: Go here to view more details and manage scans for this pull request.

Details

The following contributors were found for this pull request:

211e3f7 Author: @insaf021 <I***f​@digiscrypt.com>

(Only the first commit for a unique contributor is listed.)