From 11ec91334d06ba6b0b35bd981a591ce09691f50b Mon Sep 17 00:00:00 2001
From: tradetrustimda <150785679+tradetrustimda@users.noreply.github.com>
Date: Mon, 18 Nov 2024 17:20:00 +0800
Subject: [PATCH] fix: resolve csp error block v3 config (#350)

Co-authored-by: nghaninn <43451336+nghaninn@users.noreply.github.com>
---
 netlify.toml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/netlify.toml b/netlify.toml
index 1ba9270b..a1fab3b9 100644
--- a/netlify.toml
+++ b/netlify.toml
@@ -11,4 +11,4 @@
   [headers.values]
     X-Content-Type-Options = "nosniff"
     Strict-Transport-Security = "max-age=31536000; includeSubDomains"
-    Content-Security-Policy = "default-src 'self'; img-src 'self'; style-src 'self' https://fonts.googleapis.com https://use.fontawesome.com 'unsafe-inline'; script-src 'self' https://identity.netlify.com https://www.googletagmanager.com 'nonce-{nonce}' 'unsafe-eval'; font-src 'self' data: https://fonts.gstatic.com https://use.fontawesome.com https://ui.tradetrust.io; connect-src 'self' https://www.google-analytics.com https://*.infura.io/v3/ https://identity.netlify.com https://dns.google https://cloudflare-dns.com https://mainnet.hashio.io/api https://testnet.hashio.io/api https://free.testnet.stabilityprotocol.com https://gtn.stabilityprotocol.com https://erpc.apothem.network https://erpc.xinfin.network https://polygon-rpc.com https://*.xdcrpc.com https://api.etherscan.io https://gasstation.polygon.technology/v2 https://gasstation-testnet.polygon.technology/v2 https://gallery.openattestation.com https://astronlayer2.bitfactory.cn/rpc/ https://astronscanl2.bitfactory.cn/gas-station https://tradetrust-functions.netlify.app; frame-src * https://app.netlify.com; frame-ancestors 'self'; object-src 'none';"
+    Content-Security-Policy = "default-src 'self'; img-src 'self'; style-src 'self' https://fonts.googleapis.com https://use.fontawesome.com 'unsafe-inline'; script-src 'self' https://identity.netlify.com https://www.googletagmanager.com 'nonce-{nonce}' 'unsafe-eval'; font-src 'self' data: https://fonts.gstatic.com https://use.fontawesome.com https://ui.tradetrust.io; connect-src *; frame-src * https://app.netlify.com; frame-ancestors 'self'; object-src 'none';"