From 08ad8aabfea88c1c3367c1c1ba6b97aa40faf18c Mon Sep 17 00:00:00 2001
From: Cameron Dahl <camnooten@gmail.com>
Date: Thu, 30 Dec 2021 23:08:49 -0600
Subject: [PATCH] Remove X-XSS-Protection suggestion

---
 docs/security.rst | 12 ------------
 1 file changed, 12 deletions(-)

diff --git a/docs/security.rst b/docs/security.rst
index 31d00652..777e5112 100644
--- a/docs/security.rst
+++ b/docs/security.rst
@@ -173,18 +173,6 @@ invisibly to clicks on your page's elements. This is also known as
 
 - https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
 
-X-XSS-Protection
-~~~~~~~~~~~~~~~~
-
-The browser will try to prevent reflected XSS attacks by not loading the page
-if the request contains something that looks like JavaScript and the response
-contains the same data. ::
-
-    response.headers['X-XSS-Protection'] = '1; mode=block'
-
-- https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-XSS-Protection
-
-
 .. _security-cookie:
 
 Set-Cookie options