- commit
- 1f1214a
- parent
- f13d251
- author
- Eric Bower
- date
- 2025-08-02 15:09:20 -0400 EDT
fix(pastes): allow script-src
1 files changed,
+1,
-1
+1,
-1
1@@ -53,7 +53,7 @@
2 # keep referrer data off of HTTP connections
3 Referrer-Policy no-referrer-when-downgrade
4
5- Content-Security-Policy "default-src 'self'; img-src * 'unsafe-inline'; style-src * 'unsafe-inline'"
6+ Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline'; img-src * 'unsafe-inline'; style-src * 'unsafe-inline'
7
8 X-XSS-Protection "1; mode=block"
9 }