diff options
| author |   HsiangNianian <i@jyunko.cn> | 2026-01-16 16:44:03 +0800 |
|---|---|---|
| committer | HsiangNianian <i@jyunko.cn> | 2026-01-16 16:44:03 +0800 |
| commit | df7d5c6af4cb26f23b32865da77bf2d76d0b56f1 (patch) | |
| tree | 47556fcbc71e69648b484178fa76f35eeba3735a | |
| parent | 11757bd94dcb618f508f1439b846f586e7d6022a (diff) | |
| download | DropOut-df7d5c6af4cb26f23b32865da77bf2d76d0b56f1.tar.gz DropOut-df7d5c6af4cb26f23b32865da77bf2d76d0b56f1.zip | |
chore: update CSP in tauri configuration for enhanced security
Modified the content security policy (CSP) in tauri.conf.json to define specific sources for scripts, styles, images, fonts, and connections, improving the application's security posture.
| -rw-r--r-- | src-tauri/tauri.conf.json | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/src-tauri/tauri.conf.json b/src-tauri/tauri.conf.json index 450990a..133d82b 100644 --- a/src-tauri/tauri.conf.json +++ b/src-tauri/tauri.conf.json @@ -20,7 +20,7 @@ } ], "security": { - "csp": null, + "csp": "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; img-src 'self' data: https:; font-src 'self' data:; connect-src 'self' https: ws: wss:;", "capabilities": ["default"] } }, |