@forge/csp
Advanced tools
@forge/csp - npm Package Compare versions
Comparing version 3.4.0 to 3.4.1-next.0
| # @forge/csp | ||
| ## 3.4.1-next.0 | ||
| ### Patch Changes | ||
| - 2819919: remove connect-to from csp header as it is no longer used | ||
| ## 3.4.0 | ||
@@ -4,0 +10,0 @@ |
@@ -139,3 +139,2 @@ "use strict"; | ||
| ].join(' '); | ||
| const navigateTo = ["'self'"]; | ||
| return [ | ||
@@ -150,3 +149,2 @@ `default-src ${defaultSrc}`, | ||
| `script-src ${scriptSrc}`, | ||
| `navigate-to ${navigateTo}`, | ||
| `style-src ${styleSrc}`, | ||
@@ -153,0 +151,0 @@ `form-action 'self'`, |
| { | ||
| "name": "@forge/csp", | ||
| "version": "3.4.0", | ||
| "version": "3.4.1-next.0", | ||
| "description": "Contains the CSP configuration for Custom UI resources in Forge", | ||
@@ -14,4 +14,4 @@ "main": "out/index.js", | ||
| "devDependencies": { | ||
| "@forge/cli-shared": "6.4.0", | ||
| "@forge/manifest": "8.1.0", | ||
| "@forge/cli-shared": "6.4.1-next.1", | ||
| "@forge/manifest": "8.2.0-next.1", | ||
| "@types/jest": "^29.5.12", | ||
@@ -18,0 +18,0 @@ "@types/node": "14.18.63" |
Sorry, the diff of this file is not supported yet
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
No v1
QualityPackage is not semver >=1. This means it is not stable and does not support ^ ranges.
Found 1 instance in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by0.15%
32184
Worsened metrics
- Lines of code
- decreased by-0.52%
381
- Number of low quality alerts
- increased by100%
2