From 588b1d905e214ac8ef94406a1f97cdb88b76a1fe Mon Sep 17 00:00:00 2001 From: Henk Verlinde Date: Wed, 17 Mar 2021 08:39:20 +0100 Subject: [PATCH] config: update content security headers --- layouts/index.headers | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/layouts/index.headers b/layouts/index.headers index 606b815..31746da 100644 --- a/layouts/index.headers +++ b/layouts/index.headers @@ -2,7 +2,7 @@ Strict-Transport-Security: max-age=31536000; includeSubDomains; preload X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block - Content-Security-Policy: default-src 'self'; frame-ancestors https://jamstackthemes.dev; manifest-src 'self'; connect-src 'self'; font-src 'self'; img-src 'self' data:; script-src 'self' 'unsafe-inline'; style-src 'self' + Content-Security-Policy: default-src 'self'; frame-ancestors https://jamstackthemes.dev; manifest-src 'self'; connect-src 'self'; font-src 'self'; img-src 'self' data:; script-src 'self'; style-src 'self' X-Frame-Options: SAMEORIGIN Referrer-Policy: strict-origin Feature-Policy: geolocation 'self'