This is an automated email from the ASF dual-hosted git repository. lidongdai pushed a commit to branch davidzollo-patch-1 in repository https://gitbox.apache.org/repos/asf/seatunnel-website.git
commit 017c0faded5761d82db7b101496571075a8bd42c Author: David Zollo <[email protected]> AuthorDate: Fri Jan 16 19:02:38 2026 +0800 Update Content-Security-Policy in .htaccess --- .htaccess | 4 +--- 1 file changed, 1 insertion(+), 3 deletions(-) diff --git a/.htaccess b/.htaccess index 9fd92dafe3f1..cc7220a46004 100644 --- a/.htaccess +++ b/.htaccess @@ -1,5 +1,3 @@ ErrorDocument 404 /404.html -<IfModule mod_headers.c> - Header set Content-Security-Policy "frame-src 'self' https://www.google.com https://app.netlify.com"; -</IfModule> +Header set Content-Security-Policy "default-src data: blob: 'self' *.apache.org *.kapa.ai *.githubusercontent.com *.googleapis.com *.google.com *.run.app *.gstatic.com *.github.com https://hcaptcha.com https://*.hcaptcha.com *.algolia.net *.algolianet.com *.apachecon.com *.communityovercode.org 'unsafe-inline' 'unsafe-eval'; frame-src *; frame-ancestors 'self' *.google.com; worker-src 'self' data: blob:; img-src 'self' blob: data: https:; font-src 'self' data: blob:; object-src 'none'"
