heckyel/yt-local
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Add content security policy to ensure mistakes or exploits never lead to third party connections from the page

Browse Source
This commit is contained in:
James Taylor 2019-07-26 13:09:41 -07:00
parent 10f1d7945e
commit 4c9ecc9a18
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
youtube/templates/base.html
View File

@ -3,6 +3,7 @@
<head>
<meta charset="utf-8">
<title>{{ page_title }}</title>
<meta http-equiv="Content-Security-Policy" content="default-src 'self' 'unsafe-inline'; script-src 'none'; media-src https://*.googlevideo.com">
<link href="/youtube.com/static/shared.css" type="text/css" rel="stylesheet">
<link href="/youtube.com/static/comments.css" type="text/css" rel="stylesheet">
<link href="/youtube.com/static/favicon.ico" type="image/x-icon" rel="icon">