```

✨ feat(ReserverController): Ajoute vérification de disponibilité produit. 🛠️ refactor(BackupCommand): Utilise DatabaseDumper et ZipArchiver. ✨ feat(GitSyncLogCommand): Utilise Gemini pour messages plus clairs. ✨ feat(GenerateVideoThumbsCommand): Utilise VideoThumbnailer service. ✨ feat(AppWarmupImagesCommand): Utilise StorageInterface pour warmup. 🔒️ security(nelmio_security): Renforce la sécurité avec des en-têtes. 🔧 chore(caddy): Améliore la configuration de Caddy pour la performance. 🐛 fix(makefile): Corrige les commandes de test. 🧪 chore(.env.test): Supprime la ligne vide à la fin du fichier. 🔧 chore(doctrine): Active native_lazy_objects. 🔧 chore(cache): Ajoute un cache system. ```
2026-01-30 17:58:12 +01:00
parent a6fc8fdf3b
commit 36a51c5a54
34 changed files with 1879 additions and 164 deletions
--- a/config/packages/nelmio_security.yaml
+++ b/config/packages/nelmio_security.yaml
@@ -4,6 +4,11 @@ nelmio_security:
        enabled: true
        policies:
            - 'strict-origin-when-cross-origin'
+    content_type:
+        nosniff: true
+    clickjacking:
+        paths:
+            '^/.*': DENY
    permissions_policy:
        enabled: true
        policies:
@@ -19,6 +24,8 @@ nelmio_security:
            algorithm: 'sha256'
        enforce:
            default-src: ["'self'"]
+            object-src: ["'none'"]
+            base-uri: ["'self'"]
            worker-src: ["'self'"]
            script-src:
                - "'self'"
@@ -56,5 +63,5 @@ nelmio_security:
                - "data:"
            frame-ancestors: ["'none'"]
            # Optionnel : forcer le passage en HTTPS
-            upgrade-insecure-requests: false
+            upgrade-insecure-requests: true