- Introduced Cross-Origin-Resource-Policy header in server.js, nginx.conf, and _headers to restrict resource sharing to same-site origins, improving security against cross-origin attacks.
- Ensured consistent application of Cross-Origin-Opener-Policy and Cross-Origin-Embedder-Policy across server and nginx configurations for better resource management.
- Modified the Content-Security-Policy to include specific domains for default-src and connect-src, improving security and flexibility.
- Updated the commented-out Content-Security-Policy in the _headers file to reflect the same changes for consistency.
- Updated various dependencies in package.json and package-lock.json for improved performance and security.
- Changed Cross-Origin-Embedder-Policy from 'require-corp' to 'credentialless' in server.js and nginx.conf for better compatibility.
- Enhanced Content-Security-Policy to include specific domains for script and connect sources.
- Added brand information to translations for multiple languages, improving localization and user experience.
- Introduced a new BrandMarquee component in the homepage layout to showcase brands effectively.
- Added rehype-sanitize plugin to the markdown configuration for improved security against XSS attacks.
- Updated environment variables in the codebase to include new configurations for SMTP and monitoring.
- Implemented secure headers in server and Nginx configurations to bolster security.
- Refactored email handling to prevent spoofing by ensuring safe sender addresses.
- Improved localization by updating language persistence and button components for better user experience.
- Enhanced the uptime API and contact form with better error handling and logging practices.
- Updated dependencies in package.json and package-lock.json for better performance and security.
