From 693a5399b8b2230ca04784a91ce5eb446ff5306f Mon Sep 17 00:00:00 2001
From: Vihang Mehta <vihang@pixielabs.ai>
Date: Thu, 1 Jun 2023 11:28:38 -0700
Subject: [PATCH] Add recommended security related headers to website

Signed-off-by: Vihang Mehta <vihang@pixielabs.ai>
---
 netlify.toml | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/netlify.toml b/netlify.toml
index 50b8e99..676c3dc 100644
--- a/netlify.toml
+++ b/netlify.toml
@@ -2,6 +2,15 @@
   publish ="public/"
   command = "yarn install && yarn lint && gatsby build"
 
+[[headers]]
+  for = "/*"
+  [headers.values]
+    Permissions-Policy = "camera=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), vibrate=()"
+    Referrer-Policy = "strict-origin-when-cross-origin"
+    X-Content-Type-Options = "nosniff"
+    X-Frame-Options = "SAMEORIGIN"
+    X-XSS-Protection = "1; mode=block"
+
 [[redirects]]
   from = "/blog"
   to = "https://blog.px.dev"