Blog Post

GD Security Headers 1.2

GD Security Headers version 1.2, brings support for the Feature Policy security header with total of 18 features included, and various improvements and new automatic rules for Content Security Policy.

This new version adds a new security header for the Feature Policy that is made up of various rules related to various features that the browser can expose to the website and underlying contexts (frames). This is a new header that is not widely used, but it is fully supported by Google Chrome and various other Chromium-based browsers.

Right now, this header supports 18 features, including a gyroscope, battery, microphone, video and many more. This addon will be updated in the future to include new features once they are approved and in use.

Headers generated for NGINX and IIS Servers

Content Security Policy addon now has few more predefined rules for Google YouTube, Google Tag Manager, Gravatar, Gleam and Vimeo. You can use these automatic rules to enable CSP rules for these services, instead of manually adding every rule that these services might need.

The plugin is available for free on WordPress.org, so check it out:

Let me know what you think about the new plugin, and if you have any questions or suggestions.

To see the list of all the changes in this version, please check out the changelog. If you find any issues with the new version, please, report them in the support forums.

Please wait...
GD Security Headers
An easy way to add HTTP security headers

Configure various security related HTTP headers, including Content Security Policy, Referrer Policy and more. All headers can be added to .HTACCESS file.

About the author

Milan Petrovic
Milan Petrovic

CEO and Lead developer of Dev4Press Web Development company, working with WordPress since 2008, first as a freelancer, later founding own development company. Author of more than 250 plugins and more than 20 themes.

Subscribe to Dev4Press Newsletter

Get the latest announcements, release digests, promotions and exclusive discounts, and general Dev4Press-related news straight into your mailbox.


This form collects your email (optionally your name) for the purpose of sending you newsletters. Check out our Privacy Policy for more information on how we store and manage your data. We will not send you any spam. Newsletters are sent 2 to 4 times every month.

Leave a Comment

SiteGround - Managed WordPress Hosting
Grammarly - Number 1 Writing App