-
Notifications
You must be signed in to change notification settings - Fork 4
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Merging existing script-src
incorrectly, missing a space.
#72
Comments
Thanks for reporting @rbliss! Will investigate shortly |
Much appreciated @jasonbarry. Let me know if I can provide any further details to help. |
@rbliss we just released version 1.2.8 which should fix this problem -- can you upgrade and confirm if it fixes it for you? thanks! |
@jasonbarry confirmed fixed. Thanks for the quick turnaround. |
@rbliss Sure thing! Thanks for reporting. Going to close this out |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Thanks for creating this plugin. We've been testing it out and ran into an issue. We have a CSP header set in our
netlify.toml
.When we include the plugin and deploy, the function appears to incorrectly merge the CSP header betweem the toml file and the rules generated by this plugin:
It appears the merged content for
script-src
is missing a space betweenhttp
and the original CSP string:http:'sha256-test'
which causes the CSP to break for script src.The text was updated successfully, but these errors were encountered: