From 95ca56d32a47bb34f83bd263c94b5a89d6290aae Mon Sep 17 00:00:00 2001
From: mbyregowMx <47214747+mbyregowMx@users.noreply.github.com>
Date: Thu, 26 Oct 2023 09:51:00 +0200
Subject: [PATCH 1/3] Update nginx.py

Origin-Header release helper commit
---
 buildpack/core/nginx.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/buildpack/core/nginx.py b/buildpack/core/nginx.py
index 9cf537f1..e8b6fa27 100644
--- a/buildpack/core/nginx.py
+++ b/buildpack/core/nginx.py
@@ -22,7 +22,7 @@
     "Strict-Transport-Security": r"(?i)(^max-age=[0-9]*$|^max-age=[0-9]*; includeSubDomains$|^max-age=[0-9]*; preload$)",  # noqa: line-too-long
     "X-Permitted-Cross-Domain-Policies": r"(?i)(^all$|^none$|^master-only$|^by-content-type$|^by-ftp-filename$)",  # noqa: line-too-long
     "Origin-Trial": r"[a-zA-Z0-9:;/''\"\*_\- \.\n?=%&+]+",
-    "X-XSS-Protection": r"(?i)(^0$|^1$|^1; mode=block$|^1; report=https?://([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\-]{0,61}[a-zA-Z0-9])(\.([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\-]{0,61}[a-zA-Z0-9]))*(:\d+)?$)",  # noqa: line-too-long
+    "X-XSS-Protection": r"(?i)(^0$|^1$|^1; mode=block$|^1; report=https?://([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\-]{0,61}[a-zA-Z0-9])(\.([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\-]{0,61}[a-zA-Z0-9]))*(:\d+)?$)"  # noqa: line-too-long
 }
 
 CONFIG_FILE = "nginx/conf/nginx.conf"

From 98b1f7f6c101c5bf6a7199bb2afe674bbcbc7d28 Mon Sep 17 00:00:00 2001
From: mbyregowMx <47214747+mbyregowMx@users.noreply.github.com>
Date: Thu, 26 Oct 2023 10:20:20 +0200
Subject: [PATCH 2/3] Update nginx.py

Helper commit
---
 buildpack/core/nginx.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/buildpack/core/nginx.py b/buildpack/core/nginx.py
index e8b6fa27..9cf537f1 100644
--- a/buildpack/core/nginx.py
+++ b/buildpack/core/nginx.py
@@ -22,7 +22,7 @@
     "Strict-Transport-Security": r"(?i)(^max-age=[0-9]*$|^max-age=[0-9]*; includeSubDomains$|^max-age=[0-9]*; preload$)",  # noqa: line-too-long
     "X-Permitted-Cross-Domain-Policies": r"(?i)(^all$|^none$|^master-only$|^by-content-type$|^by-ftp-filename$)",  # noqa: line-too-long
     "Origin-Trial": r"[a-zA-Z0-9:;/''\"\*_\- \.\n?=%&+]+",
-    "X-XSS-Protection": r"(?i)(^0$|^1$|^1; mode=block$|^1; report=https?://([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\-]{0,61}[a-zA-Z0-9])(\.([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\-]{0,61}[a-zA-Z0-9]))*(:\d+)?$)"  # noqa: line-too-long
+    "X-XSS-Protection": r"(?i)(^0$|^1$|^1; mode=block$|^1; report=https?://([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\-]{0,61}[a-zA-Z0-9])(\.([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\-]{0,61}[a-zA-Z0-9]))*(:\d+)?$)",  # noqa: line-too-long
 }
 
 CONFIG_FILE = "nginx/conf/nginx.conf"

From d496fd52b235bcd571bdd58e8cf90f1416a7a2ec Mon Sep 17 00:00:00 2001
From: mbyregowMx <47214747+mbyregowMx@users.noreply.github.com>
Date: Thu, 26 Oct 2023 10:22:23 +0200
Subject: [PATCH 3/3] Update README.md

---
 README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/README.md b/README.md
index 33302923..1bae52bb 100644
--- a/README.md
+++ b/README.md
@@ -145,7 +145,7 @@ The first push generates a new app. In order to login to your application as adm
 cf set-env <YOUR_APP> ADMIN_PASSWORD "<YOURSECRETPASSWORD>"
 ```
 
-### 4. Connect a Database 
+### 4. Connect a Database
 
 After configuring an admin password, proceed with [connecting a database](#connect-a-database).