This is an automated email from the ASF dual-hosted git repository. zhangjuntao pushed a commit to branch Jtrust-patch-1 in repository https://gitbox.apache.org/repos/asf/skywalking-website.git
commit f35ddf40640d0062920b874bc197171da93afd25 Author: Zhang Juntao <[email protected]> AuthorDate: Sun Jan 25 11:20:23 2026 +0800 Fix .htaccess to enable hCaptcha --- .htaccess | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/.htaccess b/.htaccess index 4f32bd70a54..5785b041966 100644 --- a/.htaccess +++ b/.htaccess @@ -4,7 +4,9 @@ ErrorDocument 404 /404.html Header always set Content-Security-Policy "default-src 'self' https: data: 'unsafe-inline'; \ frame-src 'self' https://www.youtube.com https://player.bilibili.com https://hcaptcha.com https://*.hcaptcha.com; \ script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.algolianet.com https://*.algolia.net https://*.algolia.io https://api.github.com https://kapa-widget-proxy-la7dkmplpq-uc.a.run.app https://hcaptcha.com https://*.hcaptcha.com; \ - connect-src 'self' https://*.algolianet.com https://*.algolia.net https://*.algolia.io https://api.github.com https://kapa-widget-proxy-la7dkmplpq-uc.a.run.app; \ + connect-src 'self' https://*.algolianet.com https://*.algolia.net https://*.algolia.io https://api.github.com https://kapa-widget-proxy-la7dkmplpq-uc.a.run.app https://*.hcaptcha.com; \ + style-src 'self' 'unsafe-inline' https://hcaptcha.com https://*.hcaptcha.com; \ + img-src 'self' data: https://hcaptcha.com https://*.hcaptcha.com; \ frame-ancestors 'self'; \ object-src 'none'; \ upgrade-insecure-requests;"
