From a7a3aa848e67be305d8aa263d045a7b43d309bcc Mon Sep 17 00:00:00 2001 From: Yuya Ochiai Date: Fri, 20 Jan 2017 23:45:39 +0900 Subject: [PATCH] :memo: Fix typo [ci skip] --- docs/tutorial/security.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/tutorial/security.md b/docs/tutorial/security.md index b0ebf8dc9bae..0933e608ee65 100644 --- a/docs/tutorial/security.md +++ b/docs/tutorial/security.md @@ -56,7 +56,7 @@ This is not bulletproof, but at the least, you should attempt the following: * Only display secure (https) content * Disable the Node integration in all renderers that display remote content (setting `nodeIntegration` to `false` in `webPreferences`) -* Enable context isolation in all rendererers that display remote content +* Enable context isolation in all renderers that display remote content (setting `contextIsolation` to `true` in `webPreferences`) * Do not disable `webSecurity`. Disabling it will disable the same-origin policy. * Define a [`Content-Security-Policy`](http://www.html5rocks.com/en/tutorials/security/content-security-policy/)