We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
1 parent 60127c9 commit c6bcbaeCopy full SHA for c6bcbae
clients/privacy-center/app/server-utils/recommendedSecurityHeaders.ts
@@ -52,7 +52,7 @@ export const privacyCenterPagesCspHeader = (args: {
52
script-src 'self' 'nonce-${args.nonce}' 'strict-dynamic' ${args.isDev ? "'unsafe-eval'" : ""};
53
style-src 'self' 'unsafe-inline';
54
connect-src 'self' ${args.fidesApiHost} ${args.geolocationApiHost};
55
- img-src 'self' blob: data:;
+ img-src * blob: data:;
56
font-src 'self';
57
object-src 'none';
58
base-uri 'self';
0 commit comments