projects / bloat / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 29c6be0) | patch
Remove the 'unsafe-inline'.
authorPete <pete@debu.gs>
Tue, 17 Oct 2023 04:42:22 +0000 (21:42 -0700)
committerPete <pete@debu.gs>
Tue, 17 Oct 2023 04:42:22 +0000 (21:42 -0700)
commit95ef92184e8d5478f8e33e27eca2de3b15081ac1
treec088ca7c328424b0e3f051789094425c360955cetree | snapshot
parent29c6be06340b6c62e381199e94bd92593c74ba12commit | diff
Remove the 'unsafe-inline'.

CSP2 and up ignores unsafe-inline when there's a nonce, but apparently that's
ten years back.  Since the impact is "JavaScript will be rejected" (a good
thing in general but sometimes people do use JS, I hear), we can ditch
the 'unsafe-inline'.
service/transport.go -rel nofollow diff | blob | history
A Pleroma/Mastodon client written in Go; these are some changes.