From e2f4a4f6b0dd7034f47108607b45ede785aa8880 Mon Sep 17 00:00:00 2001
From: Gustavo Saiani <gustavo@poe.ma>
Date: Fri, 3 Jun 2022 20:28:23 +0200
Subject: [PATCH] Remove unneeded URIs from content security policy header
 (#23107)

---
 src/metabase/server/middleware/security.clj | 2 --
 1 file changed, 2 deletions(-)

diff --git a/src/metabase/server/middleware/security.clj b/src/metabase/server/middleware/security.clj
index 706a33575cd..5336c9d5022 100644
--- a/src/metabase/server/middleware/security.clj
+++ b/src/metabase/server/middleware/security.clj
@@ -52,8 +52,6 @@
                                    "'unsafe-eval'" ; TODO - we keep working towards removing this entirely
                                    "https://maps.google.com"
                                    "https://accounts.google.com"
-                                   "https://*.googleapis.com"
-                                   "*.gstatic.com"
                                    (when (public-settings/anon-tracking-enabled)
                                      "https://www.google-analytics.com")
                                    ;; for webpack hot reloading
-- 
GitLab