mirror/FreshRSS
0
0
Fork 0
mirror of https://github.com/FreshRSS/FreshRSS.git synced 2026-02-06 03:21:10 -05:00
Code Issues Packages Projects Releases Wiki Activity
Files
2b02ca59c6af1cfe087ec7e6ea9773cffd48fd50
FreshRSS/p/api
History
Inverle 7df6c201f2 Put CSP everywhere (#7810) 
* Puts CSP everywhere in `p/api`
   * including the HTML query page 
   * Also in `p/ext.php`
* Puts `X-Content-Type-Options: nosniff` everywhere
* Fixes custom icon configuration not showing `blob:` icon in statsController (idle feeds)
   * Also removes `style-src 'unsafe-inline'` since it doesn't seem to be needed
* Improves CSP of `p/f.php`

* Add `sandbox` directive
2025-08-11 19:35:54 +02:00
..
.htaccess
Issue #2446 : Fix passing authentication headers (#2449)
2019-07-20 23:23:24 +02:00
fever.php
Put CSP everywhere (#7810)
2025-08-11 19:35:54 +02:00
greader.php
Put CSP everywhere (#7810)
2025-08-11 19:35:54 +02:00
index.php
Put CSP everywhere (#7810)
2025-08-11 19:35:54 +02:00
misc.php
Add API endpoint for extensions (#7576)
2025-06-03 00:16:17 +02:00
pshb.php
Put CSP everywhere (#7810)
2025-08-11 19:35:54 +02:00
query.php
Put CSP everywhere (#7810)
2025-08-11 19:35:54 +02:00