diff --git a/dpaste/settings/base.py b/dpaste/settings/base.py index 41f4b84..13a5019 100644 --- a/dpaste/settings/base.py +++ b/dpaste/settings/base.py @@ -116,8 +116,9 @@ SECURE_BROWSER_XSS_FILTER = True SECURE_CONTENT_TYPE_NOSNIFF = True CSP_DEFAULT_SRC = ("'none'",) -CSP_SCRIPT_SRC = ("'self'",) -CSP_STYLE_SRC = ("'self'",) +# If you edit the CSS/JS update your 256 HASH here. +CSP_SCRIPT_SRC = ("'self'", "'unsafe-hashes'", "'sha256-634c702966ae36dcd81fe7a4c4756413be3b77af4f4a820651faecd1db1ab26a'",) +CSP_STYLE_SRC = ("'self'", "'unsafe-hashes'", "'sha256-7ac9cd7ab2811dac84cdc031d0acf0f355a2ab619f633b857f6db5b4c2b45361'") LOGGING = { "version": 1,