kenliao94 opened a new pull request, #1287: URL: https://github.com/apache/activemq/pull/1287
Unspecified Cache-Control HTTP header is vulnerable. Set it to no-store to avoid caching sensitive data for stronger security. It should be the default unless users override it. Reference: https://www.virtuesecurity.com/kb/cache-controls-explained/ > Note: this PR was approved at https://github.com/apache/activemq/pull/1238 However, the branch history for that PR was messed up due to wrong operation with git. I closed that one and opened a new one (this one). Please approve again, thank you so much. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: gitbox-unsubscr...@activemq.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org --------------------------------------------------------------------- To unsubscribe, e-mail: gitbox-unsubscr...@activemq.apache.org For additional commands, e-mail: gitbox-h...@activemq.apache.org For further information, visit: https://activemq.apache.org/contact
