refactor: update Content Security Policy to allow 'wasm-unsafe-eval' and set nonce in response headers

2026-04-12 14:10:42 +08:00 · 2025-10-20 12:23:41 +08:00 · 2025-10-20 12:23:41 +08:00 · 1f4c541c0d
commit 1f4c541c0d
parent faefc3492e
1 changed files with 1 additions and 1 deletions
--- a/web/middleware.ts
+++ b/web/middleware.ts
@ -56,7 +56,7 @@ export function middleware(request: NextRequest) {
    contentSecurityPolicyHeaderValue,
  )

-  response.headers.set('x-nonce', nonce)
+  // response.headers.set('x-nonce', nonce)
  response.headers.set(
    'Content-Security-Policy',
    contentSecurityPolicyHeaderValue,