trezy/next-safe

View on GitHub
docs/api/xssProtection.md

Summary

Maintainability
Test Coverage
## `xssProtection`

### Default

`1; mode=block`

### Description

`xssProtection` controls the value of the `X-XSS-Protection` header. This header is mostly for backwards compatibility. It enables some security features in older browsers that dobn't support CSP.

Set to `false` to disable the `X-XSS-Protection` header.