[lintian] 02/02: Add CSP header to the website
This is an automated email from the git hooks/post-receive script.
nthykier pushed a commit to branch master
in repository lintian.
commit b022a39da7a9b410d683306402b73b59b24875dd
Author: Niels Thykier <niels@thykier.net>
Date: Thu Sep 1 19:16:10 2016 +0000
Add CSP header to the website
Signed-off-by: Niels Thykier <niels@thykier.net>
---
debian/changelog | 1 +
reporting/templates/head.tmpl | 1 +
2 files changed, 2 insertions(+)
diff --git a/debian/changelog b/debian/changelog
index 710c3d2..4be15ee 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -48,6 +48,7 @@ lintian (2.5.47) UNRELEASED; urgency=medium
* reporting/templates/head.tmpl:
+ [NT] Add subresource integrity fields to all <link> tags.
+ + [NT] Add Content-Security-Policy header (via <meta http-equiv>).
-- Niels Thykier <niels@thykier.net> Sat, 13 Aug 2016 20:07:19 +0000
diff --git a/reporting/templates/head.tmpl b/reporting/templates/head.tmpl
index 4001950..c44a685 100644
--- a/reporting/templates/head.tmpl
+++ b/reporting/templates/head.tmpl
@@ -1,6 +1,7 @@
<!DOCTYPE html>
<html lang="en">
<head>
+ <meta http-equiv="Content-Security-Policy" content="default-src 'self'; media-src 'none'; object-src 'none'" />
<title>{$page_title}</title>
<meta charset="utf-8" />
<meta name="viewport" content="width=device-width, initial-scale=1" />
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/lintian/lintian.git
Reply to: