diff options
Diffstat (limited to 'app/FreshRSS.php')
| -rw-r--r-- | app/FreshRSS.php | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/app/FreshRSS.php b/app/FreshRSS.php index 06557dbe1..bff9f1b18 100644 --- a/app/FreshRSS.php +++ b/app/FreshRSS.php @@ -34,6 +34,7 @@ class FreshRSS extends Minz_FrontController { // Relax Content Security Policy to allow external images if a custom logo HTML is used Minz_ActionController::_defaultCsp([ 'default-src' => "'self'", + 'frame-ancestors' => "'none'", 'img-src' => '* data:', ]); } |