Hide this message
Looking to compare latest NPM features with previous versions of NPM?
The NPM new feature summary offers a comparison of new features and improvements offered with this release.
The Orion web configuration is changed in NPM 11.5 as a security measure to prevent Cross-Site Request Forgery (CSRF) and Clickjacking attacks. As a result, displaying resources on Orion in an a custom web page is not possible.
The following was added to the web config as a security measure.
X-XSS-Protection: 1; mode=block