Release 1.283.1

CHANGELOG.md

@@ -5,7 +5,7 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
-## 1.283.0 - 2023-06-24
+## 1.283.1 - 2023-06-24
 
 ### Added
 

apps/api/src/main.ts

@@ -35,7 +35,15 @@ async function bootstrap() {
   // Support 10mb csv/json files for importing activities
   app.use(bodyParser.json({ limit: '10mb' }));
 
-  app.use(helmet());
+  app.use(
+    helmet({
+      contentSecurityPolicy: {
+        directives: {
+          scriptSrc: ["'self'", "'unsafe-inline'"] // Allow inline scripts / styles
+        }
+      }
+    })
+  );
 
   const BASE_CURRENCY = configService.get<string>('BASE_CURRENCY');
   const HOST = configService.get<string>('HOST') || '0.0.0.0';

package.json

@@ -1,6 +1,6 @@
 {
   "name": "ghostfolio",
-  "version": "1.283.0",
+  "version": "1.283.1",
   "homepage": "https://ghostfol.io",
   "license": "AGPL-3.0",
   "scripts": {