From 95f63fa56dd8d3205a621380b3c39b492b7a29bd Mon Sep 17 00:00:00 2001
From: Quentin BEY <quentin.bey@mail.numerique.gouv.fr>
Date: Thu, 5 Jun 2025 18:24:52 +0200
Subject: [PATCH] =?UTF-8?q?=F0=9F=94=92=EF=B8=8F(frontend)=20hide=20Nginx?=
 =?UTF-8?q?=20server=20version=20in=20error=20responses?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Remove version disclosure in /assets/ error pages identified by security
auditor to prevent information leakage vulnerability.
---
 src/frontend/apps/desk/conf/default.conf | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/frontend/apps/desk/conf/default.conf b/src/frontend/apps/desk/conf/default.conf
index a0acf50..f620d50 100644
--- a/src/frontend/apps/desk/conf/default.conf
+++ b/src/frontend/apps/desk/conf/default.conf
@@ -1,6 +1,7 @@
 server {
   listen 8080;
   server_name localhost;
+  server_tokens off;
 
   root /usr/share/nginx/html;