From f374fe8186bfbdbb8eaf7b50e6d2165624a21e3e Mon Sep 17 00:00:00 2001
From: Seth <hullogh@gmail.com>
Date: Tue, 30 Jul 2024 20:50:11 +0800
Subject: [PATCH] fix: update csp

---
 netlify.toml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/netlify.toml b/netlify.toml
index 937fba4c7..ba99496b5 100644
--- a/netlify.toml
+++ b/netlify.toml
@@ -30,4 +30,4 @@
   [headers.values]
     X-Content-Type-Options = "nosniff"
     Strict-Transport-Security = "max-age=31536000; includeSubDomains"
-    Content-Security-Policy = "default-src 'self'; img-src 'self'; style-src 'self' https://fonts.googleapis.com https://use.fontawesome.com 'unsafe-inline'; script-src 'self' https://identity.netlify.com https://www.googletagmanager.com 'unsafe-inline' 'unsafe-eval'; font-src 'self' data: https://fonts.gstatic.com https://use.fontawesome.com https://ui.tradetrust.io; connect-src 'self' https://www.google-analytics.com https://identity.netlify.com https://dns.google https://cloudflare-dns.com https://min-api.cryptocompare.com https://api.blocknative.com; frame-src * https://app.netlify.com; frame-ancestors 'self'; object-src 'none';"
+    Content-Security-Policy = "default-src 'self'; img-src 'self'; style-src 'self' https://fonts.googleapis.com https://use.fontawesome.com 'unsafe-inline'; script-src 'self' https://identity.netlify.com https://www.googletagmanager.com 'unsafe-inline' 'unsafe-eval'; font-src 'self' data: https://fonts.gstatic.com https://use.fontawesome.com https://ui.tradetrust.io; connect-src 'self' https://www.google-analytics.com https://identity.netlify.com https://*.infura.io/v3/ https://dns.google https://cloudflare-dns.com https://min-api.cryptocompare.com https://api.blocknative.com; frame-src * https://app.netlify.com; frame-ancestors 'self'; object-src 'none';"