fix: disable xss per https://github.com/helmetjs/helmet/issues/230\#issuecomment-1500157600 and Hardenize report suggestions

titanism · titanism · commit adf0c862c0ea · 2023-04-07T12:13:38.000-05:00
diff --git a/config/web.js b/config/web.js
@@ -163,9 +163,7 @@ module.exports = (redis) => ({
     referrerPolicy: {
       policy: 'same-origin'
     },
-    xssFilter: {
-      reportUri
-    }
+    xssFilter: false
   },
   session: {
     errorHandler(err, type, ctx) {
