From eebe9193b0645e3d0b8628b71bfb0406f0809f3c Mon Sep 17 00:00:00 2001 From: Erin Rivas Date: Wed, 14 Feb 2024 19:08:29 -0600 Subject: [PATCH] more csp fixes --- netlify.toml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/netlify.toml b/netlify.toml index 853a36b..b9f85c6 100644 --- a/netlify.toml +++ b/netlify.toml @@ -6,7 +6,7 @@ [[headers]] for = "/*" [headers.values] - Content-Security-Policy = "default-src 'self'; script-src 'self' 'wasm-unsafe-eval' chrome-extension: https://netlify-rum.netlify.app; connect-src https:; object-src blob:; media-src blob:; frame-src blob:; frame-ancestors 'self';" + Content-Security-Policy = "default-src 'self'; style-src 'unsafe-inline'; script-src 'self' 'wasm-unsafe-eval' chrome-extension: https://netlify-rum.netlify.app; connect-src https:; object-src '*'; media-src '*'; frame-src '*'; frame-ancestors 'self';" X-Content-Type-Options = "nosniff" Referrer-Policy = "same-origin" Permissions-Policy = ""