Referrer-Policy: same-origin (#6303)

* Referrer-Policy: same-origin * same-origin for our own images --------- Co-authored-by: Alexandre Alapetite <alexandre@alapetite.fr>
author: maTh <1645099+math-GH@users.noreply.github.com> 2025-04-01 12:23:56 +0200
committer: GitHub <noreply@github.com> 2025-04-01 12:23:56 +0200
commit: 1f624bc5e2fc720b7f570b4b217860747ef5dc65 (patch)
tree: 894e90cef48fd596f6b87c879bbdefdd0d74e643 /lib
parent: 238d5a48e41041a787f90c522c7873ef99ab6f7c (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/lib/lib_rss.php b/lib/lib_rss.php
index 99c72cb49..b53838410 100644
--- a/lib/lib_rss.php
+++ b/lib/lib_rss.php
@@ -981,6 +981,7 @@ function errorMessageInfo(string $errorTitle, string $error = ''): string {
 	}
 
 	header("Content-Security-Policy: default-src 'self'");
+	header('Referrer-Policy: same-origin');
 
 	return <<<MSG
 	<!DOCTYPE html><html><header><title>HTTP 500: {$errorTitle}</title></header><body>
author	maTh <1645099+math-GH@users.noreply.github.com>	2025-04-01 12:23:56 +0200
committer	GitHub <noreply@github.com>	2025-04-01 12:23:56 +0200
commit	1f624bc5e2fc720b7f570b4b217860747ef5dc65 (patch)
tree	894e90cef48fd596f6b87c879bbdefdd0d74e643 /lib
parent	238d5a48e41041a787f90c522c7873ef99ab6f7c (diff)