diff --git a/app.js b/app.js index 7bb86ed8e3..d7048557e4 100755 --- a/app.js +++ b/app.js @@ -126,7 +126,6 @@ app.use(function(req, res, next) { var trusted = [ "'self'", '*.freecodecamp.com', - 'http://www.freecodecamp.com/*', '*.gstatic.com', '*.google-analytics.com', '*.googleapis.com', @@ -168,8 +167,7 @@ app.use(helmet.contentSecurityPolicy({ scriptSrc: [ '*.optimizely.com', '*.aspnetcdn.com', - '*.d3js.org', - '*.freecodecamp.com' + '*.d3js.org' ].concat(trusted), 'connect-src': [ 'ws://*.rafflecopter.com',