From 4fa7a5c1bc4a02ac51808f768825bab95d4cd172 Mon Sep 17 00:00:00 2001
From: James Cole <james@firefly-iii.org>
Date: Thu, 8 Apr 2021 11:58:21 +0200
Subject: [PATCH] Update headers

---
 app/Http/Middleware/SecureHeaders.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/app/Http/Middleware/SecureHeaders.php b/app/Http/Middleware/SecureHeaders.php
index c22273cdbb..e1bc4ea3a6 100644
--- a/app/Http/Middleware/SecureHeaders.php
+++ b/app/Http/Middleware/SecureHeaders.php
@@ -53,7 +53,7 @@ class SecureHeaders
         $csp               = [
             "default-src 'none'",
             "object-src 'self'",
-            sprintf("script-src 'unsafe-inline' 'nonce-%1s' %2s 'strict-dynamic'", $nonce, $trackingScriptSrc),
+            sprintf("script-src 'unsafe-inline' 'nonce-%1s' %2s", $nonce, $trackingScriptSrc),
             "frame-ancestors 'none'",
             "base-uri 'self'",
             "font-src 'self' data:",