v1.17.0

What's Changed

• feat: add coep, corp, x-dns-prefetch-control, x-permitted-cross-doman-policies by @reversearrow in #102
• chore: ensure the package does not add any headers by @unrolled in #103

New Contributors

• @reversearrow made their first contribution in #102

Full Changelog: v1.16.0...v1.17.0

v1.16.0

What's Changed

• Fixed comment to mention the correct HTTP status code used with SSLTemporaryRedirect by @tinmrn in #98
• chore: fix readme comment by @unrolled in #99
• skip func fields in marshalling Options (json,yaml,toml) by @aerth in #97
• lint: fixing linter errs by @unrolled in #100
• chore: add go 1.23 to test matrix by @unrolled in #101

New Contributors

• @tinmrn made their first contribution in #98
• @aerth made their first contribution in #97

Full Changelog: v1.15.0...v1.16.0

v1.15.0

What's Changed

• bringing linter up to date by @unrolled in #95
• fix: sort csp directives per w3 spec by @unrolled in #96

Full Changelog: v1.14.0...v1.15.0

v1.14.0

What's Changed

• Updating linter rules by @unrolled in #89
• Bump CI versions, fix a few linting errors by @unrolled in #90
• Removing HPKP and Expect-CT by @unrolled in #92

Full Changelog: v1.13.0...v1.14.0

v1.13.0

• Added a new CSP Builder (#86)

v1.12.0

• Removed AllowedHostsFunc option that was added in v1.11.0 (#85)
• Added a new AllowRequestFunc option that allows for custom filtering of requests (#85)

v1.11.0

• Add ability to pass a custom allowed hosts function (#82)

v1.10.0

• Add ability to set Cross-Origin-Opener-Policy header (#80 )

v1.0.9

• Added Permissions-Policy, deprecated Feature-Policy (#77)

v1.0.8

• Fixed #70