mirrors/element-web
1
0
Fork 0
mirror of https://github.com/element-hq/element-web synced 2024-11-25 10:45:51 +03:00
Code Issues Projects Releases Packages Wiki Activity

Enhance security by disallowing CSP object-src rule

Browse source
This commit is contained in:
Germain Souquet 2021-06-28 16:47:33 +01:00
parent 334ddd8cba
commit 33d05678b4
1 changed files with 0 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
src/vector/index.html
View file

@ -35,7 +35,6 @@
worker-src 'self'; worker-src 'self';
frame-src * blob: data:; frame-src * blob: data:;
form-action 'self'; form-action 'self';
object-src 'self';
manifest-src 'self'; manifest-src 'self';
"> ">
<% for (var i=0; i < htmlWebpackPlugin.files.css.length; i++) { <% for (var i=0; i < htmlWebpackPlugin.files.css.length; i++) {