From d1008a736639e731679fd1e18eba4e6d437f00ad Mon Sep 17 00:00:00 2001 From: Henk Verlinde Date: Tue, 16 Mar 2021 15:39:01 +0100 Subject: [PATCH] fix: update content security headers --- layouts/index.headers | 3 ++- layouts/partials/footer/script-footer.html | 3 ++- 2 files changed, 4 insertions(+), 2 deletions(-) diff --git a/layouts/index.headers b/layouts/index.headers index 31746da..513de04 100644 --- a/layouts/index.headers +++ b/layouts/index.headers @@ -2,7 +2,8 @@ Strict-Transport-Security: max-age=31536000; includeSubDomains; preload X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block - Content-Security-Policy: default-src 'self'; frame-ancestors https://jamstackthemes.dev; manifest-src 'self'; connect-src 'self'; font-src 'self'; img-src 'self' data:; script-src 'self'; style-src 'self' + Content-Security-Policy: default-src 'self'; frame-ancestors https://jamstackthemes.dev; manifest-src 'self'; connect-src 'self'; font-src 'self'; img-src 'self' data:; script-src 'self' 'nonce-D9lYHmnDA/pVyXs6HQZq4gBs7gwpDOjyJz/jQNYQ/ziWEj7+xYf9zOwDw6kmrhYc +gwPqbqBXeoOEfPXt9EiIyQ=='; style-src 'self' X-Frame-Options: SAMEORIGIN Referrer-Policy: strict-origin Feature-Policy: geolocation 'self' diff --git a/layouts/partials/footer/script-footer.html b/layouts/partials/footer/script-footer.html index 5f83c4a..745a6d3 100644 --- a/layouts/partials/footer/script-footer.html +++ b/layouts/partials/footer/script-footer.html @@ -61,7 +61,8 @@ {{ end -}} {{ if .Site.Params.options.kaTex -}} - + {{ end -}} {{ if .Site.Params.options.flexSearch -}}