This is an automated email from the ASF dual-hosted git repository.
shenghang pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/seatunnel-website.git
The following commit(s) were added to refs/heads/main by this push:
new d8d02101e62f Update Content-Security-Policy in .htaccess (#421)
d8d02101e62f is described below
commit d8d02101e62f40ff64b927c024738900830aae3b
Author: David Zollo <[email protected]>
AuthorDate: Fri Jan 16 19:09:10 2026 +0800
Update Content-Security-Policy in .htaccess (#421)
---
.htaccess | 4 +---
1 file changed, 1 insertion(+), 3 deletions(-)
diff --git a/.htaccess b/.htaccess
index 9fd92dafe3f1..cc7220a46004 100644
--- a/.htaccess
+++ b/.htaccess
@@ -1,5 +1,3 @@
ErrorDocument 404 /404.html
-<IfModule mod_headers.c>
- Header set Content-Security-Policy "frame-src 'self'
https://www.google.com https://app.netlify.com";
-</IfModule>
+Header set Content-Security-Policy "default-src data: blob: 'self'
*.apache.org *.kapa.ai *.githubusercontent.com *.googleapis.com *.google.com
*.run.app *.gstatic.com *.github.com https://hcaptcha.com
https://*.hcaptcha.com *.algolia.net *.algolianet.com *.apachecon.com
*.communityovercode.org 'unsafe-inline' 'unsafe-eval'; frame-src *;
frame-ancestors 'self' *.google.com; worker-src 'self' data: blob:; img-src
'self' blob: data: https:; font-src 'self' data: blob:; object-src 'none'"
