From 3c3b9f286c30e123206a543f17efe6b8bd4368f0 Mon Sep 17 00:00:00 2001
From: Oliver Gorwits <oliver@cpan.org>
Date: Wed, 6 Oct 2021 17:56:46 +0100
Subject: [PATCH] better Content-Security-Policy

---
 share/config.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/share/config.yml b/share/config.yml
index 9c75059f..026a0792 100644
--- a/share/config.yml
+++ b/share/config.yml
@@ -534,5 +534,5 @@ route_cache: true
 appname: 'Netdisco'
 behind_proxy: false
 HTTP-Header-X-Frame-Options: 'DENY'
-HTTP-Header-Content-Security-Policy: 'none'
+HTTP-Header-Content-Security-Policy: 'frame-ancestors none;'