diff --git a/packages/backend/src/server/web/index.ts b/packages/backend/src/server/web/index.ts index c6748fd80b..55a125fac3 100644 --- a/packages/backend/src/server/web/index.ts +++ b/packages/backend/src/server/web/index.ts @@ -418,7 +418,7 @@ router.get("/notes/:note", async (ctx, next) => { ctx.set("Cache-Control", "public, max-age=15"); ctx.set( "Content-Security-Policy", - "default-src 'self' 'unsafe-inline'; img-src '*'; frame-ancestors '*'", + "default-src 'self' 'unsafe-inline'; img-src *; frame-ancestors *", ); return;