From f7a3ecee2c1a785226f59b69d2a1ade38bfe290d Mon Sep 17 00:00:00 2001
From: Your Name <you@example.com>
Date: Tue, 10 May 2022 22:41:10 +0200
Subject: [PATCH] remove X-XSS-Protection header from nginx.conf

---
 core/nginx/conf/nginx.conf | 1 -
 1 file changed, 1 deletion(-)

diff --git a/core/nginx/conf/nginx.conf b/core/nginx/conf/nginx.conf
index 28e19f04..80ebdaee 100644
--- a/core/nginx/conf/nginx.conf
+++ b/core/nginx/conf/nginx.conf
@@ -117,7 +117,6 @@ http {
       add_header X-Frame-Options 'SAMEORIGIN';
       add_header X-Content-Type-Options 'nosniff';
       add_header X-Permitted-Cross-Domain-Policies 'none';
-      add_header X-XSS-Protection '0';
       add_header Referrer-Policy 'same-origin';
 
       # mozilla autoconfiguration