Also add report-uri and default-src

0a2ddbb8 · Enol Fernandez · 19575e32 · 0a2ddbb8
Commit 0a2ddbb8 authored 4 months ago by Enol Fernandez
--- a/common/playbooks/k8s.yaml
+++ b/common/playbooks/k8s.yaml
@@ -362,7 +362,7 @@
          --set controller.addHeaders.X-Content-Type-Options=nosniff
          --set controller.addHeaders.Referrer-Policy=no-referrer
          --set controller.addHeaders.Permissions-Policy="geolocation=()"
-          --set controller.addHeaders.Content-Security-Policy="frame-ancestors 'none'"
+          --set controller.addHeaders.Content-Security-Policy="frame-ancestors 'none'; report-uri /hub/security/csp-report; default-src 'self'"
          --version={{ version }}
      shell: |-
        helm status --namespace kube-system cluster-ingress