From 719c2258e0abb6ee18f783f54bbe2206757eca14 Mon Sep 17 00:00:00 2001 From: Olivier Tassinari Date: Tue, 17 Sep 2024 21:32:11 +0200 Subject: [PATCH] New location Signed-off-by: Olivier Tassinari --- docs/public/_headers | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/public/_headers b/docs/public/_headers index 294df75a05668c..85ddbcf543dd41 100644 --- a/docs/public/_headers +++ b/docs/public/_headers @@ -23,5 +23,5 @@ X-XSS-Protection: 1; mode=block Referrer-Policy: strict-origin-when-cross-origin # TODO: progressively reduce the CSP scopes - # Start with a wildcard, using https://github.com/mui/mui-toolpad/blob/f4c4eb046b352e4fc00729c3bed605e671b040c4/packages/toolpad-studio/src/server/index.ts#L241 + # Start with a wildcard, using https://github.com/mui/toolpad/blob/f4c4eb046b352e4fc00729c3bed605e671b040c4/packages/toolpad-studio/src/server/index.ts#L241 Content-Security-Policy: default-src * data: mediastream: blob: filesystem: about: ws: wss: 'unsafe-eval' 'wasm-unsafe-eval' 'unsafe-inline'; script-src * data: blob: 'unsafe-inline' 'unsafe-eval'; script-src-elem * data: blob: 'unsafe-inline'; connect-src * data: blob: 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; media-src * data: blob: 'unsafe-inline'; frame-src * data: blob: ; style-src * data: blob: 'unsafe-inline'; font-src * data: blob: 'unsafe-inline'; frame-ancestors *;