You're Invited: Meet the Socket team at BSidesSF and RSAC - April 27 - May 1.RSVP →
@forge/csp
Advanced tools
@forge/csp - npm Package Compare versions
Comparing version 2.1.0 to 2.1.1-experimental-2a9dda4
| # @forge/csp | ||
| ## 2.1.1 | ||
| ### Patch Changes | ||
| - 907ce6c: Add navigate-to CSP directive | ||
| ## 2.1.1-next.0 | ||
| ### Patch Changes | ||
| - 907ce6c: Add navigate-to CSP directive | ||
| ## 2.1.0 | ||
@@ -4,0 +16,0 @@ |
@@ -44,2 +44,3 @@ "use strict"; | ||
| const styleSrc = ["'self'", ...this.getExistingCSPDetails(types_1.ExternalCspType.STYLE_SRC, existingCSPDetails)].join(' '); | ||
| const navigateTo = ["'self'"]; | ||
| return [ | ||
@@ -54,2 +55,3 @@ `default-src ${defaultSrc}`, | ||
| `script-src ${scriptSrc}`, | ||
| `navigate-to ${navigateTo}`, | ||
| `style-src ${styleSrc} https://unpkg.com/@atlaskit/tokens@0.10.30/css/atlassian-light.css https://unpkg.com/@atlaskit/tokens@0.10.30/css/atlassian-dark.css`, | ||
@@ -56,0 +58,0 @@ `form-action 'self'`, |
| { | ||
| "name": "@forge/csp", | ||
| "version": "2.1.0", | ||
| "version": "2.1.1-experimental-2a9dda4", | ||
| "description": "Contains the CSP configuration for Custom UI resources in Forge", | ||
@@ -14,4 +14,4 @@ "main": "out/index.js", | ||
| "devDependencies": { | ||
| "@forge/cli-shared": "^3.4.0", | ||
| "@forge/manifest": "^4.5.2", | ||
| "@forge/cli-shared": "3.7.0-next.3-experimental-2a9dda4", | ||
| "@forge/manifest": "4.7.1-next.0-experimental-2a9dda4", | ||
| "@types/jest": "^29.1.2" | ||
@@ -18,0 +18,0 @@ }, |
Sorry, the diff of this file is not supported yet
New alerts
No v1
QualityPackage is not semver >=1. This means it is not stable and does not support ^ ranges.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
24531
1.29%- Lines of code
314
0.64%Worsened metrics
- Number of low quality alerts
2
100%No dependency changes