diff --git a/files/__main__.py b/files/__main__.py index 22723a932..10b0203a3 100644 --- a/files/__main__.py +++ b/files/__main__.py @@ -125,7 +125,7 @@ def after_request(response): response.headers.add("Strict-Transport-Security", "max-age=31536000") response.headers.add("X-Frame-Options", "deny") - response.headers.add("Content-Security-Policy", "script-src 'self' 'unsafe-inline' 'unsafe-eval' ajax.cloudflare.com static.cloudflareinsights.com; connect-src 'self' cloudflareinsights.co;") + response.headers.add("Content-Security-Policy", "script-src 'self' 'unsafe-inline' 'unsafe-eval' ajax.cloudflare.com static.cloudflareinsights.com; connect-src 'self' cloudflareinsights.co *.pusher.com;") return response