manutheblacker · September 14, 2025 05:35
diff --git a/csp-rule.js b/csp-rule.js

 csp: dev ? undefined : {
 			mode: 'nonce', // Required for SvelteKit to inject nonces automatically
 			directives: {
 				'default-src': ["'self'"],
 				'script-src': ["'self'", 'strict-dynamic', 'https://ajax.cloudflare.com', 'static.cloudflareinsights.com', 'https://challenges.cloudflare.com', 'https://cdnjs.cloudflare.com', 'https://browser-update.org'],
 				'style-src': ["'self'",'unsafe-inline','https://cdn.jsdelivr.net', 'https://cdnjs.cloudflare.com'],
 				'img-src': ["'self'", 'data:', 'blob:', 'https://placehold.co', 'https://avatars.githubusercontent.com',  'https://cdn.jsdelivr.net', 'https://ui-avatars.com'],
 				'connect-src': ["'self'", 'cloudflareinsights.com', 'https://www.google-analytics.com', 'https://www.googletagmanager.com/'],
 				'font-src': ["'self'"],
 				'frame-src':["'self'",'cloudflareinsights.com', 'https://challenges.cloudflare.com', 'https://www.googletagmanager.com/' ],
 				'frame-ancestors': ["'none'"],
 				'base-uri': ["'self'"],
 				'form-action': ["'self'"],
 				'object-src': ["'none'"],
 				'require-trusted-types-for': ["'script'"],
 				'script-src-elem' : ["'self'", 'https://challenges.cloudflare.com', , 'https://cdnjs.cloudflare.com', 'https://browser-update.org' ]
 			},
 			reportOnly: {
 				'require-trusted-types-for': ["'script'"],
 				'frame-src':["'self'",'cloudflareinsights.com', 'https://challenges.cloudflare.com' ],
 				'script-src': ['self', 'strict-dynamic', 'https://ajax.cloudflare.com', 'static.cloudflareinsights.com','https://challenges.cloudflare.com'],
 				'report-uri': []
 			}
 		}

	csp: dev ? undefined : {
	mode: 'nonce', // Required for SvelteKit to inject nonces automatically
	directives: {
	'default-src': ["'self'"],
	'script-src': ["'self'", 'strict-dynamic', 'https://ajax.cloudflare.com', 'static.cloudflareinsights.com', 'https://challenges.cloudflare.com', 'https://cdnjs.cloudflare.com', 'https://browser-update.org'],
	'style-src': ["'self'",'unsafe-inline','https://cdn.jsdelivr.net', 'https://cdnjs.cloudflare.com'],
	'img-src': ["'self'", 'data:', 'blob:', 'https://placehold.co', 'https://avatars.githubusercontent.com', 'https://cdn.jsdelivr.net', 'https://ui-avatars.com'],
	'connect-src': ["'self'", 'cloudflareinsights.com', 'https://www.google-analytics.com', 'https://www.googletagmanager.com/'],
	'font-src': ["'self'"],
	'frame-src':["'self'",'cloudflareinsights.com', 'https://challenges.cloudflare.com', 'https://www.googletagmanager.com/' ],
	'frame-ancestors': ["'none'"],
	'base-uri': ["'self'"],
	'form-action': ["'self'"],
	'object-src': ["'none'"],
	'require-trusted-types-for': ["'script'"],
	'script-src-elem' : ["'self'", 'https://challenges.cloudflare.com', , 'https://cdnjs.cloudflare.com', 'https://browser-update.org' ]
	},
	reportOnly: {
	'require-trusted-types-for': ["'script'"],
	'frame-src':["'self'",'cloudflareinsights.com', 'https://challenges.cloudflare.com' ],
	'script-src': ['self', 'strict-dynamic', 'https://ajax.cloudflare.com', 'static.cloudflareinsights.com','https://challenges.cloudflare.com'],
	'report-uri': []
	}
	}