• Maxime Orefice's avatar
    Fix artifacts content-type · e2e17fe6
    Maxime Orefice authored
    This commit lets workhorse set the content-type when serving
    artifacts. This prevents an attacker to host a maliciou JavaScript
    payload as an artifact and bypass our CSP.
    
    Changelog: security
    e2e17fe6
workhorse.rb 8.62 KB