You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Most CSP libraries, like Helmet for example, set: frame-ancestors 'self'; by default. Can you add that to the default setting for Blankie? And make it clear how to turn that off/change it, if that default isn't desired? I'm using Blankie, with Hapi, and @hapi/scooter if that matters.
I also find it interesting that the default-src tag value is 'none' instead of 'self', which is what I've seen all other default CSP settings to use. Why is 'none' the default-src default for Blankie?
The text was updated successfully, but these errors were encountered:
Most CSP libraries, like Helmet for example, set: frame-ancestors 'self'; by default. Can you add that to the default setting for Blankie? And make it clear how to turn that off/change it, if that default isn't desired? I'm using Blankie, with Hapi, and @hapi/scooter if that matters.
I also find it interesting that the default-src tag value is 'none' instead of 'self', which is what I've seen all other default CSP settings to use. Why is 'none' the default-src default for Blankie?
The text was updated successfully, but these errors were encountered: