fix(CSP): unsafe-eval

2025-12-13 20:57:24 +01:00 · 2025-12-12 16:27:46 -06:00
parent 6ef35c3f72
commit c677a1ffef
1 changed files with 1 additions and 2 deletions
--- a/website/server/middlewares/index.js
+++ b/website/server/middlewares/index.js
@@ -74,8 +74,7 @@ export default function attachMiddlewares (app, server) {
        ],
        imgSrc: null,
        scriptSrc: [
-          '*.habitica.com',
-          '*.amazonaws.com',
+          'unsafe-eval',
          'cloudfront.loggly.com',
          'js.stripe.com',
          'm.stripe.network',