Closed davepkxxx closed 10 months ago
The latest source code in the repository: https://github.com/GoogleChromeLabs/webbundle-plugins/blob/d251f6efbdb41cf8d37b9b7c696fd5c795cdc231/packages/shared/iwa-headers.ts#L29-L33
The code in webbundle-webpack-plugin@0.1.3, no wss:
in connect-src
https://cdn.jsdelivr.net/npm/webbundle-webpack-plugin@0.1.3/index.cjs#L72-L75
var CSP_HEADER_NAME = "content-security-policy";
var csp = Object.freeze({
[CSP_HEADER_NAME]: "base-uri 'none'; default-src 'self'; object-src 'none'; frame-src 'self' https: blob: data:; connect-src 'self' https:; script-src 'self' 'wasm-unsafe-eval'; img-src 'self' https: blob: data:; media-src 'self' https: blob: data:; font-src 'self' blob: data:; require-trusted-types-for 'script'; frame-ancestors 'self';"
});
Sorry for that! Done :)
Hi,
I've been using webbundle-webpack-plugin@0.1.3 and noticed it doesn't include the wss support that's available in the repo. The last npm release was 7 months ago, and it looks like the wss updates haven't made it into that version.
Could we get a new npm release with the latest changes? It would really help those of us needing wss for secure WebSocket connections in our projects.
Thanks for your work on this plugin and looking forward to the update!