Skip to content

Commit 603d891

Browse files
committed
fix: update
1 parent 5053f94 commit 603d891

1 file changed

Lines changed: 1 addition & 1 deletion

File tree

netlify.toml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -5,7 +5,7 @@
55
# X-Frame-Options intentionally omitted to allow embedding
66

77
# Content Security Policy - Comprehensive XSS protection with embedding support
8-
Content-Security-Policy = "default-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' data: https://fonts.gstatic.com; img-src 'self' data: https:; connect-src 'self' http: https:; frame-src https://app.netlify.com; frame-ancestors *; base-uri 'self'; form-action 'self'"
8+
Content-Security-Policy = "default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; font-src 'self' data: https://fonts.gstatic.com; img-src 'self' data: https:; connect-src 'self'; frame-src https://app.netlify.com; frame-ancestors *; base-uri 'self'; form-action 'self'"
99

1010
# Permissions Policy - Browser feature access control
1111
Permissions-Policy = "camera=(), microphone=(), geolocation=(), interest-cohort=(), payment=(), usb=(), bluetooth=(), magnetometer=(), gyroscope=(), accelerometer=(), autoplay=(), encrypted-media=(), fullscreen=(self), picture-in-picture=()"

0 commit comments

Comments
 (0)