From faed258a7041ae3d511e55fb4c12e209a92d35cc Mon Sep 17 00:00:00 2001 From: Tommy Date: Thu, 21 Jul 2022 19:25:28 -0400 Subject: [PATCH] Update netlify.toml Signed-off-by: Tommy --- netlify.toml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/netlify.toml b/netlify.toml index dcd5427..a736933 100644 --- a/netlify.toml +++ b/netlify.toml @@ -3,13 +3,13 @@ [headers.values] Strict-Transport-Security = "max-age=63072000; includeSubDomains; preload" Content-Security-Policy = "default-src 'none'; connect-src 'self'; img-src 'self'; script-src-elem 'self'; style-src 'self' 'unsafe-inline'; style-src-elem 'self'; frame-src www.youtube-nocookie.com; form-action 'none'; frame-ancestors 'none'; block-all-mixed-content; base-uri 'none'" - #X-Content-Type-Options = "nosniff" + X-Content-Type-Options = "nosniff" Referrer-Policy = "no-referrer" #Cross-Origin-Opener-Policy = "same-origin" #Cross-Origin-Embedder-Policy = "require-corp" X-Frame-Options = "DENY" X-XSS-Protection = "0" - #Permissions-Policy = "accelerometer=(), autoplay=(), camera=(), clipboard-read=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), hid=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), xr-spatial-tracking=()" + Permissions-Policy = "accelerometer=(), autoplay=(), camera=(), clipboard-read=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), hid=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), xr-spatial-tracking=()" Cross-Origin-Resource-Policy = "same-origin" [build.environment]