README.md in clearance-2.4.0 vs README.md in clearance-2.5.0

- old
+ new

@@ -1,10 +1,10 @@
 # Clearance
 
-[![Build Status](https://secure.travis-ci.org/thoughtbot/clearance.svg)](http://travis-ci.org/thoughtbot/clearance?branch=master)
+[![Build Status](https://github.com/thoughtbot/clearance/actions/workflows/tests.yml/badge.svg)]( https://github.com/thoughtbot/clearance/actions/workflows/tests.yml?query=branch%3Amain)
 [![Code Climate](https://codeclimate.com/github/thoughtbot/clearance.svg)](https://codeclimate.com/github/thoughtbot/clearance)
-[![Documentation Quality](https://inch-ci.org/github/thoughtbot/clearance.svg?branch=master)](https://inch-ci.org/github/thoughtbot/clearance)
+[![Documentation Quality](https://inch-ci.org/github/thoughtbot/clearance.svg?branch=main)](https://inch-ci.org/github/thoughtbot/clearance)
 [![Reviewed by Hound](https://img.shields.io/badge/Reviewed_by-Hound-8E64B0.svg)](https://houndci.com)
 
 Rails authentication with email & password.
 
 Clearance is intended to be small, simple, and well-tested. It has opinionated
@@ -53,11 +53,11 @@
   config.cookie_domain = ".example.com"
   config.cookie_expiration = lambda { |cookies| 1.year.from_now.utc }
   config.cookie_name = "remember_token"
   config.cookie_path = "/"
   config.routes = true
-  config.httponly = false
+  config.httponly = true
   config.mailer_sender = "reply@example.com"
   config.password_strategy = Clearance::PasswordStrategies::BCrypt
   config.redirect_url = "/"
   config.rotate_csrf_on_sign_in = true
   config.same_site = nil
@@ -297,10 +297,10 @@
   # ... other overrides
   config.signed_cookie = true
 end
 ```
 
-If you are currently not using unsigned cookies but would like to migrate your
+If you are currently not using signed cookies but would like to migrate your
 users over to them without breaking current sessions, you can do so by passing
 in `:migrate` rather than `true` as so:
 
 ```ruby
 Clearance.configure do |config|