From 5d57e9b00bd875d96593dbe66b6d765079285f86 Mon Sep 17 00:00:00 2001
From: Varpusparvi <mikko.karkee1@gmail.com>
Date: Tue, 9 Jul 2024 15:59:21 +0200
Subject: [PATCH] Update readme

---
 README.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/README.md b/README.md
index d145914..05807ec 100644
--- a/README.md
+++ b/README.md
@@ -97,11 +97,11 @@ In addition to the settings in your `config/initializers/phraseapp_in_context_ed
 #### Using with CSP
 
 The script will automatically get the nonce from `content_security_policy_nonce`
-The content_security_policy.rb has to have `:strict_dynamic` for `policy.script_src` and `:unsafe_inline` for `policy.style_src`
+The content_security_policy.rb has to have `:strict_dynamic` for `policy.script_src` since we are loading more scripts dynamically because of our way of deploying
 
 ```ruby
   policy.script_src :self, :https, :strict_dynamic
-  policy.style_src :self, :https, :unsafe_inline
+  policy.style_src :self, :https
 ```
 
 The `config.content_security_policy_nonce_directives = %w[script-src style-src]` can include `style-src` but this _might_ break some styling in some cases