From a34085f1d93e45dbdf29e507003b3517b9d4f240 Mon Sep 17 00:00:00 2001
From: snipe <snipe@snipe.net>
Date: Thu, 28 Sep 2017 16:28:27 -0700
Subject: [PATCH] Added mode=block to XSSProtect header

---
 app/Http/Middleware/XssProtectHeader.php | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/app/Http/Middleware/XssProtectHeader.php b/app/Http/Middleware/XssProtectHeader.php
index dd99d2ed4d..45b9806802 100644
--- a/app/Http/Middleware/XssProtectHeader.php
+++ b/app/Http/Middleware/XssProtectHeader.php
@@ -14,8 +14,9 @@ class XssProtectHeader
      */
     public function handle($request, Closure $next)
     {
+        $mode = '1; mode=block';
         $response = $next($request);
-        $response->headers->set('X-XSS-Protection', '1');
+        $response->headers->set('X-XSS-Protection', $mode);
         return $response;
     }
 }