From 885914812d1ef05a2faf0c0916f7db032e5780b0 Mon Sep 17 00:00:00 2001
From: Your Name <you@example.com>
Date: Mon, 31 Mar 2025 04:16:50 -0400
Subject: [PATCH] Debug CSP: temporarily allow inline scripts and remove SRI
 requirement

---
 docker/resume/Caddyfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docker/resume/Caddyfile b/docker/resume/Caddyfile
index b003049..1a3f329 100644
--- a/docker/resume/Caddyfile
+++ b/docker/resume/Caddyfile
@@ -26,7 +26,7 @@
         Cross-Origin-Opener-Policy "same-origin"
         
         # Simplified CSP for static content
-        Content-Security-Policy "default-src 'none'; script-src 'self'; style-src 'self'; img-src 'self' data:; font-src 'self' data:; connect-src 'self'; object-src 'none'; frame-ancestors 'none'; base-uri 'none'; form-action 'none'; require-sri-for script;"
+        Content-Security-Policy "default-src 'none'; script-src 'self' 'unsafe-inline'; style-src 'self'; img-src 'self' data:; font-src 'self' data:; connect-src 'self'; object-src 'none'; frame-ancestors 'none'; base-uri 'none'; form-action 'none';"
     }
 
     # Handle 404s