From 13cd0fe12bef13f09114ea2fbfd7e0bfaae5aa9c Mon Sep 17 00:00:00 2001 From: mark Date: Thu, 27 Apr 2023 13:00:59 +0200 Subject: [PATCH 1/3] Refine header settings --- netlify.toml | 22 ++++++++++++++++------ 1 file changed, 16 insertions(+), 6 deletions(-) diff --git a/netlify.toml b/netlify.toml index c9713ea..79d3546 100644 --- a/netlify.toml +++ b/netlify.toml @@ -22,15 +22,20 @@ X-XSS-Protection = "1; mode=block" Content-Security-Policy = """\ default-src 'self'; \ + child-src 'self' app.netlify.com; \ script-src 'self' \ - https://utteranc.es/client.js; \ - style-src 'self' https://utteranc.es https://fonts.googleapis.com https://www.youtube.com; \ + app.netlify.com netlify-cdp-loader.netlify.app \ + https://utteranc.es/client.js https://*.google-analytics.com https://*.googletagmanager.com; \ + style-src 'self' \ + netlify.app https://utteranc.es https://fonts.googleapis.com https://www.youtube.com; \ object-src 'none'; \ base-uri 'self'; \ - connect-src 'self'; \ + connect-src 'self' + https://*.google-analytics.com https://*.analytics.google.com https://*.googletagmanager.com; \ font-src 'self' https://fonts.gstatic.com; \ - frame-src 'self' https://utteranc.es https://www.youtube-nocookie.com https://www.youtube.com; \ - img-src 'self' https://i.vimeocdn.com https://i.ytimg.com; \ + frame-src 'self' https://utteranc.es https://www.youtube-nocookie.com https://www.youtube.com \ + app.netlify.com; \ + img-src 'self' https://i.vimeocdn.com https://i.ytimg.com https://*.google-analytics.com https://*.googletagmanager.com; \ manifest-src 'self'; \ media-src 'self' \ """ @@ -47,7 +52,12 @@ fullscreen=(), \ payment=() \ """ - Cache-Control = "public, max-age=31536000" + cache-control = """\ + max-age=0, \ + no-cache, \ + no-store, \ + must-revalidate \ + """ Access-Control-Allow-Origin = "*" [context.deploy-preview] From 8834f89b3eea19c5c87f6c42c9ba3a2520c61e6b Mon Sep 17 00:00:00 2001 From: mark Date: Thu, 27 Apr 2023 13:03:15 +0200 Subject: [PATCH 2/3] Bump dependencies --- package-lock.json | 14 +++++++------- package.json | 2 +- 2 files changed, 8 insertions(+), 8 deletions(-) diff --git a/package-lock.json b/package-lock.json index 3f070ec..067e0b5 100644 --- a/package-lock.json +++ b/package-lock.json @@ -11,7 +11,7 @@ "devDependencies": { "@fortawesome/fontawesome-free": "^6.4.0", "@fullhuman/postcss-purgecss": "^5.0.0", - "@gethinode/hinode": "^0.12.0", + "@gethinode/hinode": "^0.12.5", "autoprefixer": "^10.4.14", "bootstrap": "^5.3.0-alpha3", "eslint": "^8.39.0", @@ -273,9 +273,9 @@ } }, "node_modules/@gethinode/hinode": { - "version": "0.12.0", - "resolved": "https://registry.npmjs.org/@gethinode/hinode/-/hinode-0.12.0.tgz", - "integrity": "sha512-khv+tQRDPKpJO51kwtq89wN6ITU2d8D9tUNF+W1s9165WbBFgqcWAlVS6PMbfl3Q4Sm2aPSrgaG40TI9hOXmWQ==", + "version": "0.12.5", + "resolved": "https://registry.npmjs.org/@gethinode/hinode/-/hinode-0.12.5.tgz", + "integrity": "sha512-vUDDfuWEzO03n5nuHWIlMu/5pdV0LhcNxPiKOYTXV92CcDuJlYCXbFSrYG/jHTv2375WpsT0D3XXOtNpmsI6kw==", "dev": true }, "node_modules/@humanwhocodes/config-array": { @@ -6549,9 +6549,9 @@ } }, "@gethinode/hinode": { - "version": "0.12.0", - "resolved": "https://registry.npmjs.org/@gethinode/hinode/-/hinode-0.12.0.tgz", - "integrity": "sha512-khv+tQRDPKpJO51kwtq89wN6ITU2d8D9tUNF+W1s9165WbBFgqcWAlVS6PMbfl3Q4Sm2aPSrgaG40TI9hOXmWQ==", + "version": "0.12.5", + "resolved": "https://registry.npmjs.org/@gethinode/hinode/-/hinode-0.12.5.tgz", + "integrity": "sha512-vUDDfuWEzO03n5nuHWIlMu/5pdV0LhcNxPiKOYTXV92CcDuJlYCXbFSrYG/jHTv2375WpsT0D3XXOtNpmsI6kw==", "dev": true }, "@humanwhocodes/config-array": { diff --git a/package.json b/package.json index 9533022..b516fee 100644 --- a/package.json +++ b/package.json @@ -37,7 +37,7 @@ "devDependencies": { "@fortawesome/fontawesome-free": "^6.4.0", "@fullhuman/postcss-purgecss": "^5.0.0", - "@gethinode/hinode": "^0.12.0", + "@gethinode/hinode": "^0.12.5", "autoprefixer": "^10.4.14", "bootstrap": "^5.3.0-alpha3", "eslint": "^8.39.0", From 9fe0a73497327c3b828e30306d4a693c9e0324fc Mon Sep 17 00:00:00 2001 From: mark Date: Thu, 27 Apr 2023 13:03:35 +0200 Subject: [PATCH 3/3] Bump release version --- package-lock.json | 4 ++-- package.json | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/package-lock.json b/package-lock.json index 067e0b5..c270a7d 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,12 +1,12 @@ { "name": "@gethinode/child", - "version": "0.8.0", + "version": "0.8.1", "lockfileVersion": 2, "requires": true, "packages": { "": { "name": "@gethinode/child", - "version": "0.8.0", + "version": "0.8.1", "license": "MIT", "devDependencies": { "@fortawesome/fontawesome-free": "^6.4.0", diff --git a/package.json b/package.json index b516fee..0f36680 100644 --- a/package.json +++ b/package.json @@ -1,6 +1,6 @@ { "name": "@gethinode/child", - "version": "0.8.0", + "version": "0.8.1", "description": "Hinode is a clean blog theme for Hugo, an open-source static site generator", "main": "index.js", "scripts": {