From df7d5c6af4cb26f23b32865da77bf2d76d0b56f1 Mon Sep 17 00:00:00 2001
From: HsiangNianian <i@jyunko.cn>
Date: Fri, 16 Jan 2026 16:44:03 +0800
Subject: chore: update CSP in tauri configuration for enhanced security

Modified the content security policy (CSP) in tauri.conf.json to define specific sources for scripts, styles, images, fonts, and connections, improving the application's security posture.
---
 src-tauri/tauri.conf.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'src-tauri')

diff --git a/src-tauri/tauri.conf.json b/src-tauri/tauri.conf.json
index 450990a..133d82b 100644
--- a/src-tauri/tauri.conf.json
+++ b/src-tauri/tauri.conf.json
@@ -20,7 +20,7 @@
             }
         ],
         "security": {
-            "csp": null,
+            "csp": "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; img-src 'self' data: https:; font-src 'self' data:; connect-src 'self' https: ws: wss:;",
             "capabilities": ["default"]
         }
     },
-- 
cgit v1.2.3-70-g09d2