PR#4557: Add default restricted object-src to Content-Security-Policy - pagure - Pagure.io

pagure

#4557 Add default restricted object-src to Content-Security-Policy

Merged 4 years ago by pingou. Opened 4 years ago by jlanda.

jlanda/pagure object-src into master

Add default restricted object-src to Content-Security-Policy

Julen Landa Alustiza • 4 years ago

8daf040

pagure/default_config.py

file modified

+1

		`@@ -617,4 +617,5 @@`
		`"default-src 'self' https:; "`
		`"script-src 'self' '{nonce_script}'; "`
		`"style-src 'self' '{nonce_style}'; "`
		`+ "object-src" 'none'"`
		`)`

no initial comment

Metadata

Assignee

None

Tags

No Tags

Flags

Build #2718 failed (commit: 8daf040d)

Build #2713 failed (commit: bd8d6852)

Changes Summary 1

file changed

pagure/default_config.py

Powered by Pagure 5.13.3

Documentation • File an Issue • About • SSH Hostkey/Fingerprint

© Red Hat, Inc. and others.