From 7b739ae003f919544d665256be82b1051a7d8fe2 Mon Sep 17 00:00:00 2001
From: Abhinav <abhinavk.grd@gmail.com>
Date: Fri, 3 Dec 2021 20:38:03 +0530
Subject: [PATCH] add suggested observatory header

---
 public/_headers | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/public/_headers b/public/_headers
index dbfa4f238..dc84bffc9 100644
--- a/public/_headers
+++ b/public/_headers
@@ -8,5 +8,5 @@
     X-Frame-Options: deny
     X-XSS-Protection: 1; mode=block
     Referrer-Policy: same-origin
-    Content-Security-Policy: default-src 'none'; img-src 'self' blob:; style-src 'self' 'unsafe-inline'; font-src 'self'; script-src 'self' 'unsafe-eval'; connect-src 'self' https://*.ente.io data:; report-uri https://csp-reporter.ente.workers.dev; report-to https://csp-reporter.ente.workers.dev;
+    Content-Security-Policy: default-src 'none'; img-src 'self' blob:; style-src 'self' 'unsafe-inline'; font-src 'self'; script-src 'self' 'unsafe-eval'; connect-src 'self' https://*.ente.io data:; base-uri 'self'; frame-ancestors 'none'; form-action 'none'; report-uri https://csp-reporter.ente.workers.dev; report-to https://csp-reporter.ente.workers.dev;