all repos — zola-bearblog @ 093ac10f7e5c9bd40e9def573c654069e4cba1a9

Port of bear blog theme to zola

Add form-action and base-uri CSPs

Alan Pearce
commit

093ac10f7e5c9bd40e9def573c654069e4cba1a9

parent

4c9ac0a4636df958309fe7bb17945113a0fa5fb2

1 file changed, 1 insertion(+), 1 deletion(-)

jump to
M netlify.tomlnetlify.toml
@@ -22,4 +22,4 @@ X-Content-Type-Options = "nosniff"
     X-XSS-Protection = "1; mode=block"
     Referrer-Policy = "strict-origin-when-cross-origin"
     Strict-Transport-Security = "max-age=63072000; includeSubdomains"
-    Content-Security-Policy = "default-src 'none'; img-src 'self'; object-src 'none'; script-src 'none'; style-src 'unsafe-inline'; frame-ancestors 'none'"
+    Content-Security-Policy = "default-src 'none'; img-src 'self'; object-src 'none'; script-src 'none'; style-src 'unsafe-inline'; form-action 'none'; base-uri 'self'; frame-ancestors 'none'"