Created
February 3, 2017 11:02
-
-
Save teppeis/45de4b07d71dbf57c5f1bfda8a30c74b to your computer and use it in GitHub Desktop.
CSP Header of GitHub (2017-02-03)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Content-Security-Policy: | |
| default-src 'none'; | |
| base-uri 'self'; | |
| block-all-mixed-content; | |
| child-src render.githubusercontent.com; | |
| connect-src 'self' uploads.github.com status.github.com collector.githubapp.com api.github.com www.google-analytics.com github-cloud.s3.amazonaws.com wss://live.github.com; | |
| font-src assets-cdn.github.com; | |
| form-action 'self' github.com gist.github.com; | |
| frame-ancestors 'none'; | |
| img-src 'self' data: assets-cdn.github.com identicons.github.com collector.githubapp.com github-cloud.s3.amazonaws.com *.githubusercontent.com; | |
| media-src 'none'; | |
| script-src assets-cdn.github.com; | |
| style-src 'unsafe-inline' assets-cdn.github.com |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment