From 7900ec2ca55a00175f06b881caf7db05f7bf6644 Mon Sep 17 00:00:00 2001
From: stuyk <trevorwessel@protonmail.com>
Date: Thu, 23 May 2024 12:57:42 -0600
Subject: [PATCH] fix: user content header for githubusercontent

---
 netlify.toml | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/netlify.toml b/netlify.toml
index 2322fae..293ac48 100644
--- a/netlify.toml
+++ b/netlify.toml
@@ -16,9 +16,10 @@
   [headers.values]
   Access-Control-Allow-Origin = '''
   https://app.govgen.io,
-  https://gh-discuss.devnet.govgen.dev'''
+  https://gh-discuss.devnet.govgen.dev
+  https://githubusercontent.com'''
   Strict-Transport-Security = "max-age=31536000; includeSubDomains"
-  Content-Security-Policy = "default-src 'self'; object-src 'none'; connect-src https://graphql.devnet.govgen.dev/v1/graphql https://gh-discuss.devnet.govgen.dev https://plausible.io/api/event"
+  Content-Security-Policy = "default-src 'self'; object-src 'none'; connect-src https://graphql.devnet.govgen.dev/v1/graphql https://gh-discuss.devnet.govgen.dev https://plausible.io/api/event https://githubusercontent.com"
   X-Frame-Options = "SAMEORIGIN"
   X-Content-Type-Options = "nosniff"
   Referrer-Policy = "strict-origin"