Skip to content

Commit

Permalink
bump secure_headers
Browse files Browse the repository at this point in the history
  • Loading branch information
@ulferts
ulferts committed Jan 6, 2025
1 parent 2951e6c commit f53a966
Show file tree
Hide file tree
Showing 3 changed files with 4 additions and 4 deletions.
2 changes: 1 addition & 1 deletion Gemfile
View file
Original file line number Diff line number Diff line change
Expand Up @@ -137,7 +137,7 @@ gem "rack-protection", "~> 3.2.0"
gem "rack-attack", "~> 6.7.0"

# CSP headers
gem "secure_headers", "~> 7.0.0"
gem "secure_headers", "~> 7.1.0"

# Browser detection for incompatibility checks
gem "browser", "~> 6.2.0"
Expand Down
4 changes: 2 additions & 2 deletions Gemfile.lock
View file
Original file line number Diff line number Diff line change
Expand Up @@ -1068,7 +1068,7 @@ GEM
sanitize (7.0.0)
crass (~> 1.0.2)
nokogiri (>= 1.16.8)
secure_headers (7.0.0)
secure_headers (7.1.0)
securerandom (0.4.1)
selenium-devtools (0.131.0)
selenium-webdriver (~> 4.2)
Expand Down Expand Up @@ -1380,7 +1380,7 @@ DEPENDENCIES
ruby-progressbar (~> 1.13.0)
rubytree (~> 2.1.0)
sanitize (~> 7.0.0)
secure_headers (~> 7.0.0)
secure_headers (~> 7.1.0)
selenium-devtools
selenium-webdriver (~> 4.20)
semantic (~> 1.6.1)
Expand Down
2 changes: 1 addition & 1 deletion lib/open_project/patches/secure_headers_turbo_aware_nonce.rb
View file
Original file line number Diff line number Diff line change
Expand Up @@ -37,6 +37,6 @@ def content_security_policy_script_nonce(request)
end
end

OpenProject::Patches.patch_gem_version "secure_headers", "7.0.0" do
OpenProject::Patches.patch_gem_version "secure_headers", "7.1.0" do
SecureHeaders.singleton_class.prepend OpenProject::Patches::SecureHeadersTurboAwareNonce
end

0 comments on commit f53a966

Please sign in to comment.