From c677a1ffeff5793b6da228924e68d2c2e47794b2 Mon Sep 17 00:00:00 2001
From: Kalista Payne <kalista@habitica.com>
Date: Fri, 12 Dec 2025 16:27:46 -0600
Subject: [PATCH] fix(CSP): unsafe-eval

---
 website/server/middlewares/index.js | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/website/server/middlewares/index.js b/website/server/middlewares/index.js
index eed3cc3663..4e3295468d 100644
--- a/website/server/middlewares/index.js
+++ b/website/server/middlewares/index.js
@@ -74,8 +74,7 @@ export default function attachMiddlewares (app, server) {
         ],
         imgSrc: null,
         scriptSrc: [
-          '*.habitica.com',
-          '*.amazonaws.com',
+          'unsafe-eval',
           'cloudfront.loggly.com',
           'js.stripe.com',
           'm.stripe.network',