(skywalking-website) branch master updated: Modify Content-Security-Policy in .htaccess (#812)

Sat, 24 Jan 2026 23:44:08 -0800 

This is an automated email from the ASF dual-hosted git repository.

zhangjuntao pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/skywalking-website.git


The following commit(s) were added to refs/heads/master by this push:
     new 78d86cc8658 Modify Content-Security-Policy in .htaccess (#812)
78d86cc8658 is described below

commit 78d86cc8658f404e1ef5deb51aae6a113b79a575
Author: Zhang Juntao <[email protected]>
AuthorDate: Sun Jan 25 15:43:54 2026 +0800

    Modify Content-Security-Policy in .htaccess (#812)
    
    Updated Content-Security-Policy to include js.hcaptcha.com.
---
 .htaccess | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/.htaccess b/.htaccess
index 6688f2aa0d7..8126242e125 100644
--- a/.htaccess
+++ b/.htaccess
@@ -2,9 +2,9 @@ ErrorDocument 404 /404.html
 
 <IfModule mod_headers.c>
     Header always set Content-Security-Policy "default-src 'self'; \
-    script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.algolianet.com 
https://*.algolia.net https://*.algolia.io https://api.github.com 
https://kapa-widget-proxy-la7dkmplpq-uc.a.run.app https://*.hcaptcha.com; \
-    connect-src 'self' https://*.algolianet.com https://*.algolia.net 
https://*.algolia.io https://api.github.com 
https://kapa-widget-proxy-la7dkmplpq-uc.a.run.app https://*.hcaptcha.com; \
-    frame-src 'self' https://www.youtube.com https://player.bilibili.com 
https://*.hcaptcha.com; \
+    script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.algolianet.com 
https://*.algolia.net https://*.algolia.io https://api.github.com 
https://kapa-widget-proxy-la7dkmplpq-uc.a.run.app https://js.hcaptcha.com 
https://*.hcaptcha.com; \
+    connect-src 'self' https://*.algolianet.com https://*.algolia.net 
https://*.algolia.io https://api.github.com 
https://kapa-widget-proxy-la7dkmplpq-uc.a.run.app https://js.hcaptcha.com 
https://*.hcaptcha.com; \
+    frame-src 'self' https://www.youtube.com https://player.bilibili.com 
https://js.hcaptcha.com https://*.hcaptcha.com; \
     style-src 'self' 'unsafe-inline' https:; \
     img-src 'self' data: https:; \
     font-src 'self' data: https:; \

Reply via email to