dice/impress
1
0
Fork 0
forked from OpenNeo/impress
Code Pull requests Activity
Dress to Impress, a big fancy Neopets customization tool!
1830 commits 4 branches 0 tags 248 MiB
JavaScript 45.8%
Ruby 38.2%
Haml 7.6%
Sass 6.1%
HTML 1.9%
Other 0.3%
Find a file
Matchu 7ec900b6b6 Use {script,style}_src instead of _elem, for better compatibility 
Oh, I didn't realize the `_elem` variant of these parts of the
`Content-Security-Policy` is newer, and so doesn't even work on my
current version of Safari on my Mac.

My rationale at the time was: `script_src_elem` is stricter against
things like imports, and I figured, ok let's do the strictest policy
that works. But since it's not fully compatible with browsers even
*I'm* using right now, and I'm not aware of an actual problem it would
prevent, let's back off that a bit! This should have the same effective
security properties for our case.

Note that the effect of this compatibility issue wasn't *weakening* the
policy; it was being *too* strict, by blocking the scripts and the
stylesheets. This is because `script_src_elem` was ignored, and
`script_src` was absent, so it fell back to `default_src none`.
2024-07-06 12:52:00 -07:00
.devcontainer Save last trade activity time onto User 2024-01-19 00:00:46 -08:00
.husky Set up eslint for wardrobe-2020 2023-11-02 18:11:07 -07:00
app Use {script,style}_src instead of _elem, for better compatibility 2024-07-06 12:52:00 -07:00
bin Add Solargraph autocomplete while in development 2024-07-01 15:35:39 -07:00
config swf_assets/show action to embed a canvas movie in a sandboxed iframe 2024-07-03 19:50:41 -07:00
db Make thumbnail_url a manually overridable field for Alt Styles 2024-06-15 17:35:12 -07:00
deploy Set production hostname to impress.openneo.net 2024-06-10 13:09:37 -07:00
lib Only run public_data:pull if there are no pending migrations 2024-06-18 14:52:54 -07:00
public Add a cute Ghost Acara to the 404 page 2024-04-20 21:31:27 -07:00
test Save last trade activity time onto User 2024-01-19 00:00:46 -08:00
vendor Add Solargraph autocomplete while in development 2024-07-01 15:35:39 -07:00
.eslintrc.json Set up eslint for wardrobe-2020 2023-11-02 18:11:07 -07:00
.gitignore Create rails public_data:commit task, to share public data dumps 2024-02-29 14:30:33 -08:00
.ruby-version Finish migrating to Ruby 3.3.0 2024-02-22 12:05:02 -08:00
.solargraph.yml Add Solargraph autocomplete while in development 2024-07-01 15:35:39 -07:00
.yarnrc.yml Upgrade to Yarn 4.0.2 2024-01-14 23:05:53 -08:00
config.ru Upgrade to Rails 6.1.7.4 2023-10-23 19:05:07 -07:00
falcon.rb Remove supervisor from the Falcon process? 2024-01-24 00:20:23 -08:00
Gemfile Add Solargraph autocomplete while in development 2024-07-01 15:35:39 -07:00
Gemfile.lock Add Solargraph autocomplete while in development 2024-07-01 15:35:39 -07:00
LICENSE.md Update GitHub links to point to our self-hosted OpenNeo Code 2024-02-29 11:24:21 -08:00
package.json Upgrade typescript-eslint dependencies 2024-05-06 15:08:37 -07:00
Procfile.dev Use local-only HTTPS certs for the development neopass-server 2024-03-14 18:01:54 -07:00
Rakefile Uninstall resque 2023-10-23 19:05:04 -07:00
README.md Oops, needs to be a README.md file! 2023-10-25 16:31:41 -07:00
yarn.lock Upgrade typescript-eslint dependencies 2024-05-06 15:08:37 -07:00

README.md

Dress to Impress beach logo

Dress to Impress

Oh! We've been revitalizing the Rails app! Fun!

There'll be more to say about it here soon :3