diff --git a/specs/content-security-policy/index.src.html b/specs/content-security-policy/index.src.html index 45e05c61..397ca82c 100644 --- a/specs/content-security-policy/index.src.html +++ b/specs/content-security-policy/index.src.html @@ -302,9 +302,9 @@
report-uri
and
- sandbox
directives from
- directive-set.reflected-xss
,
+ report-uri
, and sandbox
+ directives from directive-set.reflected-xss
reflected-xss
directive will be ignored if
+ contained within a
+ meta
element.
+
X-XSS-Protection