From f428ef9bddc68d6470b2eafcf43c1e167f40e94c Mon Sep 17 00:00:00 2001
From: Darren <git@darrennathanael.com>
Date: Fri, 17 Nov 2023 10:57:24 -0500
Subject: [PATCH] CSP Vun oversight fix

---
 dpaste/settings/base.py | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/dpaste/settings/base.py b/dpaste/settings/base.py
index 41f4b84..13a5019 100644
--- a/dpaste/settings/base.py
+++ b/dpaste/settings/base.py
@@ -116,8 +116,9 @@ SECURE_BROWSER_XSS_FILTER = True
 SECURE_CONTENT_TYPE_NOSNIFF = True
 
 CSP_DEFAULT_SRC = ("'none'",)
-CSP_SCRIPT_SRC = ("'self'",)
-CSP_STYLE_SRC = ("'self'",)
+# If you edit the CSS/JS update your 256 HASH here.
+CSP_SCRIPT_SRC = ("'self'", "'unsafe-hashes'", "'sha256-634c702966ae36dcd81fe7a4c4756413be3b77af4f4a820651faecd1db1ab26a'",)
+CSP_STYLE_SRC = ("'self'", "'unsafe-hashes'", "'sha256-7ac9cd7ab2811dac84cdc031d0acf0f355a2ab619f633b857f6db5b4c2b45361'")
 
 LOGGING = {
     "version": 1,