X-Content-Type-Options is missing the influence on sniffing documents (HTML) #41745
Description
MDN URL
https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/X-Content-Type-Options
What specific section or headline is this issue about?
No response
What information was incorrect, unhelpful, or incomplete?
Currently this page incorrectly states that the X-Content-Type-Options is only relevant to styles and scripts.
What did you expect to see?
The page also needs to mention that the header prevents sniffing documents loads as HTML when the Content-Type header is incorrect.
Do you have any supporting links, references, or citations?
whatwg/mimesniff#98
https://mimesniff.spec.whatwg.org/#mime-type-sniffing-algorithm
Do you have anything more you want to share?
No response
MDN metadata
Page report details
- Folder:
en-us/web/http/reference/headers/x-content-type-options - MDN URL: https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/X-Content-Type-Options
- GitHub URL: https://github.com/mdn/content/blob/main/files/en-us/web/http/reference/headers/x-content-type-options/index.md
- Last commit: d5c3db4
- Document last modified: 2025-07-10T10:51:08.000Z