[lintian] 01/01: r/t/head.tmpl: Make CSP require https and permit imgs from d.o
This is an automated email from the git hooks/post-receive script.
nthykier pushed a commit to branch master
in repository lintian.
commit 30bdc9063562228ee02cc27ff7b03ceaff5df223
Author: Niels Thykier <niels@thykier.net>
Date: Thu Sep 1 20:16:31 2016 +0000
r/t/head.tmpl: Make CSP require https and permit imgs from d.o
Signed-off-by: Niels Thykier <niels@thykier.net>
---
reporting/templates/head.tmpl | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/reporting/templates/head.tmpl b/reporting/templates/head.tmpl
index c44a685..5a44b0e 100644
--- a/reporting/templates/head.tmpl
+++ b/reporting/templates/head.tmpl
@@ -1,7 +1,7 @@
<!DOCTYPE html>
<html lang="en">
<head>
- <meta http-equiv="Content-Security-Policy" content="default-src 'self'; media-src 'none'; object-src 'none'" />
+ <meta http-equiv="Content-Security-Policy" content="default-src https: 'self'; img-src https: 'self' debian.org www.debian.org; media-src 'none'; object-src 'none'" />
<title>{$page_title}</title>
<meta charset="utf-8" />
<meta name="viewport" content="width=device-width, initial-scale=1" />
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/lintian/lintian.git
Reply to: