Fossil SCM
Activate CSP for the bootstrap skin.
Commit
a762ba1f7f3c39e635919cd08c9e41d8ab2111a863c75940015bbeb4cb18648e
Parent
594421796a9ab8f…
1 file changed
+2
-1
+2
-1
| --- skins/bootstrap/header.txt | ||
| +++ skins/bootstrap/header.txt | ||
| @@ -2,10 +2,11 @@ | ||
| 2 | 2 | <head> |
| 3 | 3 | <meta charset="utf-8"> |
| 4 | 4 | <base href="$baseurl/$current_page" /> |
| 5 | 5 | <title>$<project_name>: $<title></title> |
| 6 | 6 | <meta name="viewport" content="width=device-width, initial-scale=1.0"> |
| 7 | + <meta http-equiv="Content-Security-Policy" content="default-src 'self' data:; script-src 'self' 'nonce-$<nonce>'; style-src 'self' 'unsafe-inline'"/> | |
| 7 | 8 | <link rel="alternate" type="application/rss+xml" title="RSS Feed" href="$home/timeline.rss" /> |
| 8 | 9 | <link rel="stylesheet" href="$home/style.css?default" type="text/css" media="screen" /> |
| 9 | 10 | <script> |
| 10 | 11 | function gebi(x){ |
| 11 | 12 | if(/^#/.test(x)) x = x.substr(1); |
| @@ -115,8 +116,8 @@ | ||
| 115 | 116 | <div class="content"> |
| 116 | 117 | <th1> |
| 117 | 118 | html "<div class='container'>" |
| 118 | 119 | html "<ul class='breadcrumb'>" |
| 119 | 120 | html "<li><a href='$index_page'>Home</a></li>" |
| 120 | - html "<li><a href='$home/$current_page'>$title</a></li>" | |
| 121 | + html "<li><a href='$home/$current_page'>[htmlize $title]</a></li>" | |
| 121 | 122 | html "</ul>" |
| 122 | 123 | </th1> |
| 123 | 124 |
| --- skins/bootstrap/header.txt | |
| +++ skins/bootstrap/header.txt | |
| @@ -2,10 +2,11 @@ | |
| 2 | <head> |
| 3 | <meta charset="utf-8"> |
| 4 | <base href="$baseurl/$current_page" /> |
| 5 | <title>$<project_name>: $<title></title> |
| 6 | <meta name="viewport" content="width=device-width, initial-scale=1.0"> |
| 7 | <link rel="alternate" type="application/rss+xml" title="RSS Feed" href="$home/timeline.rss" /> |
| 8 | <link rel="stylesheet" href="$home/style.css?default" type="text/css" media="screen" /> |
| 9 | <script> |
| 10 | function gebi(x){ |
| 11 | if(/^#/.test(x)) x = x.substr(1); |
| @@ -115,8 +116,8 @@ | |
| 115 | <div class="content"> |
| 116 | <th1> |
| 117 | html "<div class='container'>" |
| 118 | html "<ul class='breadcrumb'>" |
| 119 | html "<li><a href='$index_page'>Home</a></li>" |
| 120 | html "<li><a href='$home/$current_page'>$title</a></li>" |
| 121 | html "</ul>" |
| 122 | </th1> |
| 123 |
| --- skins/bootstrap/header.txt | |
| +++ skins/bootstrap/header.txt | |
| @@ -2,10 +2,11 @@ | |
| 2 | <head> |
| 3 | <meta charset="utf-8"> |
| 4 | <base href="$baseurl/$current_page" /> |
| 5 | <title>$<project_name>: $<title></title> |
| 6 | <meta name="viewport" content="width=device-width, initial-scale=1.0"> |
| 7 | <meta http-equiv="Content-Security-Policy" content="default-src 'self' data:; script-src 'self' 'nonce-$<nonce>'; style-src 'self' 'unsafe-inline'"/> |
| 8 | <link rel="alternate" type="application/rss+xml" title="RSS Feed" href="$home/timeline.rss" /> |
| 9 | <link rel="stylesheet" href="$home/style.css?default" type="text/css" media="screen" /> |
| 10 | <script> |
| 11 | function gebi(x){ |
| 12 | if(/^#/.test(x)) x = x.substr(1); |
| @@ -115,8 +116,8 @@ | |
| 116 | <div class="content"> |
| 117 | <th1> |
| 118 | html "<div class='container'>" |
| 119 | html "<ul class='breadcrumb'>" |
| 120 | html "<li><a href='$index_page'>Home</a></li>" |
| 121 | html "<li><a href='$home/$current_page'>[htmlize $title]</a></li>" |
| 122 | html "</ul>" |
| 123 | </th1> |
| 124 |