- Greater granularity in safe-mode (allow user set defaults + user set 'unsafe' header additions)
HPKP reportingAdded!Basic CSP analysis, and warnings when policy appears unsafeAdded!Import hsts and hpkp policies, reconfigure safe-mode to use maximums only (do not remove manually set headers, but modify them if unsafe)Added!Remove type hinting and use custom type enforcement function that generates errors similar to those produced by type hinting in PHP 7. (backwards-compatibility for PHP 5)Added!Greater 'strict-dynamic' integrationAdded!In place of type hinting, fully document code with expected parameter typesAdded! (in Wiki)Add hpkpro function for hpkp in report only modeAdded!
- Validate more header values