From c70baa448770d39d5c8f0842f742f5f8828a31ca Mon Sep 17 00:00:00 2001
From: Henk Verlinde <henk@ventizo.com>
Date: Tue, 16 Mar 2021 15:52:04 +0100
Subject: [PATCH] fix: update content security headers

---
 layouts/index.headers                      | 2 +-
 layouts/partials/footer/script-footer.html | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/layouts/index.headers b/layouts/index.headers
index 9db4ef95c..606b815f5 100644
--- a/layouts/index.headers
+++ b/layouts/index.headers
@@ -2,7 +2,7 @@
   Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
   X-Content-Type-Options: nosniff
   X-XSS-Protection: 1; mode=block
-  Content-Security-Policy: default-src 'self'; frame-ancestors https://jamstackthemes.dev; manifest-src 'self'; connect-src 'self'; font-src 'self'; img-src 'self' data:; script-src 'self' 'nonce-0xLTIcPMhXKdCDrYV7U9Lg=='; style-src 'self'
+  Content-Security-Policy: default-src 'self'; frame-ancestors https://jamstackthemes.dev; manifest-src 'self'; connect-src 'self'; font-src 'self'; img-src 'self' data:; script-src 'self' 'unsafe-inline'; style-src 'self'
   X-Frame-Options: SAMEORIGIN
   Referrer-Policy: strict-origin
   Feature-Policy: geolocation 'self'
diff --git a/layouts/partials/footer/script-footer.html b/layouts/partials/footer/script-footer.html
index 1b1375fc5..5f83c4a46 100644
--- a/layouts/partials/footer/script-footer.html
+++ b/layouts/partials/footer/script-footer.html
@@ -61,7 +61,7 @@
   {{ end -}}
   {{ if .Site.Params.options.kaTex -}}
     <script src="{{ $katex.Permalink }}" defer></script>
-    <script src="{{ $katexAutoRender.Permalink }}" onload="renderMathInElement(document.body);" nonce="0xLTIcPMhXKdCDrYV7U9Lg==" defer></script>
+    <script src="{{ $katexAutoRender.Permalink }}" onload="renderMathInElement(document.body);" defer></script>
   {{ end -}}
   {{ if .Site.Params.options.flexSearch -}}
     <script src="{{ $index.Permalink }}" defer></script>