Show warning when unsafe CSP policy is in use (#7804)

* Show warning when unsafe CSP policy is in use * Fix bare markdown URL * i18n: fr * Minor i18n: fr * Add target="_blank" to i18n strings --------- Co-authored-by: Alexandre Alapetite <alexandre@alapetite.fr>
author: Inverle <inverle@proton.me> 2025-08-09 21:47:39 +0200
committer: GitHub <noreply@github.com> 2025-08-09 21:47:39 +0200
commit: 2b85a50ed72982ab0c0f9ef98c7ed1e15f21bf5f (patch)
tree: 7bb8412d5b14142a384e0da8cb6255802935d053 /app/i18n/en
parent: 1030973d903c746d4fb10b863c7b9aebb5c448e1 (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/app/i18n/en/gen.php b/app/i18n/en/gen.php
index 9c6bd5070..214b24474 100644
--- a/app/i18n/en/gen.php
+++ b/app/i18n/en/gen.php
@@ -155,6 +155,7 @@ return array(
 		'labels_empty' => 'No labels',
 		'new_article' => 'There are new articles available, click to refresh the page.',
 		'should_be_activated' => 'JavaScript must be enabled',
+		'unsafe_csp_header' => 'The CSP header in use is unsafe and FreshRSS may be vulnerable to XSS attacks. <a target="_blank" href="https://freshrss.github.io/FreshRSS/en/admins/10_ServerConfig.html#security">See documentation</a>',
 	),
 	'lang' => array(
 		'cs' => 'Čeština',
author	Inverle <inverle@proton.me>	2025-08-09 21:47:39 +0200
committer	GitHub <noreply@github.com>	2025-08-09 21:47:39 +0200
commit	2b85a50ed72982ab0c0f9ef98c7ed1e15f21bf5f (patch)
tree	7bb8412d5b14142a384e0da8cb6255802935d053 /app/i18n/en
parent	1030973d903c746d4fb10b863c7b9aebb5c448e1 (diff)