fix homepage storefront proxy and CSP
Build & Deploy / Build & Push Docker Image (push) Successful in 2m50s
Test / Type Check (all packages) (push) Successful in 52s
Build & Deploy / Deploy to VPS (push) Successful in 3s
Test / API Unit Tests (push) Successful in 54s
Test / Homepage Unit Tests (push) Successful in 44s
Test / Storefront Unit Tests (push) Successful in 41s
Test / Admin Unit Tests (push) Successful in 42s
Test / Dashboard Unit Tests (push) Successful in 41s
Test / API Integration Tests (push) Successful in 1m0s

This commit is contained in:
root
2026-07-02 13:55:10 -04:00
parent 9c11f3660d
commit 56c3bcf666
6 changed files with 98 additions and 5 deletions
+3 -1
View File
@@ -12,7 +12,9 @@ describe('CSP foundation', () => {
it('allows required runtime evaluation without enabling development-only sources', () => {
expect(buildContentSecurityPolicy('abc', true)).toContain("'unsafe-eval'");
expect(buildContentSecurityPolicy('abc', false)).toContain("'unsafe-eval'");
expect(buildContentSecurityPolicy('abc', false)).toContain("'nonce-abc'");
expect(buildContentSecurityPolicy('abc', false)).toContain("'unsafe-inline'");
expect(buildContentSecurityPolicy('abc', false)).not.toContain("'strict-dynamic'");
expect(buildContentSecurityPolicy('abc', false)).not.toContain("'nonce-abc'");
expect(buildContentSecurityPolicy('abc', false)).toContain(
"style-src 'self' 'unsafe-inline'",
);