From 4bb6588c7e66812e23fda5a6d7fe872b597c7f32 Mon Sep 17 00:00:00 2001
From: Ana Maksimovskikh <ana.maksimovskikh@trili.tech>
Date: Tue, 5 Nov 2024 14:47:56 +0000
Subject: [PATCH] [embed] Fix CSP for embed-iframe-mainnet

---
 apps/embed-iframe-mainnet/vercel.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/embed-iframe-mainnet/vercel.json b/apps/embed-iframe-mainnet/vercel.json
index f228932342..86b0df71a1 100644
--- a/apps/embed-iframe-mainnet/vercel.json
+++ b/apps/embed-iframe-mainnet/vercel.json
@@ -8,7 +8,7 @@
       "headers": [
         {
           "key": "Content-Security-Policy",
-          "value": "default-src 'self'; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; font-src 'self' https://fonts.gstatic.com; script-src 'self'; object-src 'none'; connect-src 'self' https://umamiwallet.com https://www.googleapis.com https://graph.facebook.com https://kukai.eu.auth0.com https://fnd.web3auth.io https://*.node.web3auth.io https://*.tor.us https://mainnet.ecadinfra.com https://api.tzkt.io https://vitals.vercel-insights.com; img-src 'self' data:; frame-ancestors 'self' https://kanvas-poa.vercel.app https://kanvas-poa-git-poa-release-trili-tech.vercel.app"
+          "value": "default-src 'self'; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; font-src 'self' https://fonts.gstatic.com; script-src 'self'; object-src 'none'; connect-src 'self' https://umamiwallet.com https://www.googleapis.com https://graph.facebook.com https://kukai.eu.auth0.com https://fnd.web3auth.io https://*.node.web3auth.io https://*.tor.us https://prod.tcinfra.net https://api.mainnet.tzkt.io https://vitals.vercel-insights.com; img-src 'self' data:; frame-ancestors 'self' https://kanvas-poa.vercel.app https://kanvas-poa-git-poa-release-trili-tech.vercel.app"
         }
       ]
     }