@quilted/create 0.1.7 → 0.1.8

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (3) hide show
  1. package/CHANGELOG.md +6 -0
  2. package/package.json +1 -1
  3. package/templates/app/foundation/Http.tsx +2 -0
package/CHANGELOG.md CHANGED
@@ -1,5 +1,11 @@
1
1
  # @quilted/create
2
2
 
3
+ ## 0.1.8
4
+
5
+ ### Patch Changes
6
+
7
+ - [`f4069df8`](https://github.com/lemonmade/quilt/commit/f4069df83ce5166056c7605144333445311427e1) Thanks [@lemonmade](https://github.com/lemonmade)! - Add reportOnly ContentSecurityPolicy prop
8
+
3
9
  ## 0.1.7
4
10
 
5
11
  ### Patch Changes
package/package.json CHANGED
@@ -1,7 +1,7 @@
1
1
  {
2
2
  "name": "@quilted/create",
3
3
  "type": "module",
4
- "version": "0.1.7",
4
+ "version": "0.1.8",
5
5
  "license": "MIT",
6
6
  "repository": {
7
7
  "type": "git",
package/templates/app/foundation/Http.tsx CHANGED
@@ -1,3 +1,4 @@
1
+ import Env from '@quilted/quilt/env';
1
2
  import {useCurrentUrl} from '@quilted/quilt';
2
3
  import {
3
4
  CacheControl,
@@ -32,6 +33,7 @@ export function Http() {
32
33
  * @see https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy
33
34
  */}
34
35
  <ContentSecurityPolicy
36
+ reportOnly={Env.MODE === 'development'}
35
37
  // By default, only allow sources from the page’s origin.
36
38
  defaultSources={["'self'"]}
37
39
  // Includes `'unsafe-inline'` because CSS is often necessary in development,