Update cloudflare-rocketloader-htmli.yaml

http/misconfiguration/cloudflare-rocketloader-htmli.yaml

@@ -6,8 +6,10 @@ info:
   severity: low
   description: |
     The Rocket Loader feature in Cloudflare allow attackers to inject arbitrary HTML into the website. This can be used to perform various attacks such as phishing, defacement, etc.
+  remediation: Disable the rocket loader or Add a CSP header to fix this issue.
   reference:
     - https://developers.cloudflare.com/speed/optimization/content/rocket-loader/enable/
+    - https://developers.cloudflare.com/fundamentals/reference/policies-compliances/content-security-policies/#product-requirements
   metadata:
     max-request: 1
     verified: true