[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[lintian] 01/01: r/t/head.tmpl: Make CSP require https and permit imgs from d.o

This is an automated email from the git hooks/post-receive script.

nthykier pushed a commit to branch master
in repository lintian.

commit 30bdc9063562228ee02cc27ff7b03ceaff5df223
Author: Niels Thykier <niels@thykier.net>
Date:   Thu Sep 1 20:16:31 2016 +0000

    r/t/head.tmpl: Make CSP require https and permit imgs from d.o
    
    Signed-off-by: Niels Thykier <niels@thykier.net>
---
 reporting/templates/head.tmpl | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/reporting/templates/head.tmpl b/reporting/templates/head.tmpl
index c44a685..5a44b0e 100644
--- a/reporting/templates/head.tmpl
+++ b/reporting/templates/head.tmpl
@@ -1,7 +1,7 @@
 <!DOCTYPE html>
 <html lang="en">
 <head>
-  <meta http-equiv="Content-Security-Policy" content="default-src 'self'; media-src 'none'; object-src 'none'" />
+  <meta http-equiv="Content-Security-Policy" content="default-src https: 'self'; img-src https: 'self' debian.org www.debian.org; media-src 'none'; object-src 'none'" />
   <title>{$page_title}</title>
   <meta charset="utf-8" />
   <meta name="viewport" content="width=device-width, initial-scale=1" />

-- 
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/lintian/lintian.git
Reply to: