From 42cc254eb7654310c5925a5a3c30ce4507f63ce2 Mon Sep 17 00:00:00 2001
From: Amir Raminfar <findamir@gmail.com>
Date: Mon, 6 Jan 2025 13:19:24 -0800
Subject: [PATCH] chore: fixes CSP

---
 internal/web/csp.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/internal/web/csp.go b/internal/web/csp.go
index 42feed8e955a..275ef4b27b49 100644
--- a/internal/web/csp.go
+++ b/internal/web/csp.go
@@ -8,7 +8,7 @@ func cspHeaders(next http.Handler) http.Handler {
 	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
 		w.Header().Set(
 			"Content-Security-Policy",
-			"default-src 'self' 'wasm-unsafe-eval' blob: https://cdn.jsdelivr.net https://*.duckdb.org; style-src 'self' 'unsafe-inline'; img-src 'self' data:;",
+			"default-src 'self' 'wasm-unsafe-eval' blob: https://cdn.jsdelivr.net https://*.duckdb.org; style-src 'self' 'unsafe-inline' blob:; img-src 'self' data:;",
 		)
 		next.ServeHTTP(w, r)
 	})