From 83edabf4fd5b0d849bc804436c6684b293666bbc Mon Sep 17 00:00:00 2001
From: Darren Nathanael <github@darrennathanael.com>
Date: Thu, 16 Nov 2023 18:29:54 -0600
Subject: [PATCH] Fix CSP mistake from 6 years ago.

https://content-security-policy.com/unsafe-inline/
---
 dpaste/settings/base.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/dpaste/settings/base.py b/dpaste/settings/base.py
index 3b61056..41f4b84 100644
--- a/dpaste/settings/base.py
+++ b/dpaste/settings/base.py
@@ -116,8 +116,8 @@ SECURE_BROWSER_XSS_FILTER = True
 SECURE_CONTENT_TYPE_NOSNIFF = True
 
 CSP_DEFAULT_SRC = ("'none'",)
-CSP_SCRIPT_SRC = ("'self'", "'unsafe-inline'")
-CSP_STYLE_SRC = ("'self'", "'unsafe-inline'")
+CSP_SCRIPT_SRC = ("'self'",)
+CSP_STYLE_SRC = ("'self'",)
 
 LOGGING = {
     "version": 1,