external/SponsorBlockServer
1
0
Fork 0
mirror of https://github.com/ajayyy/SponsorBlockServer.git synced 2024-11-10 01:02:30 +01:00
Code Issues Projects Releases Packages Wiki Activity

Add object src to csp

Browse source
This commit is contained in:
Ajay Ramachandran 2021-05-06 16:14:11 -04:00
parent cd66399049
commit 60a118f391
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
src/middleware/apiCsp.ts
View file

@ -1,6 +1,6 @@
import {NextFunction, Request, Response} from 'express';
export function apiCspMiddleware(req: Request, res: Response, next: NextFunction) {
res.header("Content-Security-Policy", "script-src 'none'");
res.header("Content-Security-Policy", "script-src 'none'; object-src 'none'");
next();
}