refactor: update Content Security Policy to allow 'wasm-unsafe-eval' and set nonce in response headers

2026-05-05 01:48:04 +08:00 · 2025-10-20 12:23:41 +08:00
parent faefc3492e
commit 1f4c541c0d
1 changed files with 1 additions and 1 deletions
--- a/web/middleware.ts
+++ b/web/middleware.ts
@ -56,7 +56,7 @@ export function middleware(request: NextRequest) {
    contentSecurityPolicyHeaderValue,
  )

-  response.headers.set('x-nonce', nonce)
+  // response.headers.set('x-nonce', nonce)
  response.headers.set(
    'Content-Security-Policy',
    contentSecurityPolicyHeaderValue,