From fc3a679b627d01e9566d6aa7b60b4ed9fd185114 Mon Sep 17 00:00:00 2001 From: xtzws Date: Fri, 14 Mar 2025 03:32:16 -0400 Subject: [PATCH] Update _headers with CSP --- _headers | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/_headers b/_headers index 7d34400..3cd967e 100644 --- a/_headers +++ b/_headers @@ -1,8 +1,9 @@ /* - Content-Security-Policy: upgrade-insecure-requests, default-src 'none'; font-src 'self'; style-src 'self'; script-src 'none'; object-src 'none' + Content-Security-Policy: upgrade-insecure-requests, base-uri 'none'; default-src 'none'; font-src 'self'; style-src 'self'; script-src 'none'; object-src 'none'; form-action 'none'; frame-ancestors 'none' X-Frame-Options: DENY Referrer-Policy: no-referrer X-Content-Type-Options: nosniff Cross-Origin-Resource-Policy: same-origin Strict-Transport-Security: max-age=31536000; includeSubDomains - Server: Tag 2 electric boogaloo + Actual-Server: Tag 2 electric boogaloo + Joe-Biden: Eat some chocolate chocolate chip!