test(e2e): align security header checks with CSP-only XSS defense

2026-05-06 20:13:56 +02:00
parent 0fbb6f4a88
commit 194884293f
1 changed files with 0 additions and 2 deletions
@@ -547,7 +547,6 @@ func TestE2E_SecurityHeadersEnhanced(t *testing.T) {
 	expectedHeaders := map[string]string{
 		"X-Content-Type-Options": "nosniff",
 		"X-Frame-Options":        "DENY",
 		"X-XSS-Protection":       "1; mode=block",
 		"Referrer-Policy":        "strict-origin-when-cross-origin",
 	}
@@ -707,7 +706,6 @@ func TestE2E_SecurityHeaderCombinations(t *testing.T) {
 		requiredHeaders := []string{
 			"X-Content-Type-Options",
 			"X-Frame-Options",
 			"X-XSS-Protection",
 			"Referrer-Policy",
 			"Content-Security-Policy",
 		}