Conversation
* Configure all sources with CSP_* vars. Space separated source list. * Fall back to `config.x.content_security_policy.*` * Move our sources to fizzy-saas References basecamp/fizzy-saas#24
jacobhrussell
pushed a commit
to jacobhrussell/fizzy
that referenced
this pull request
Dec 11, 2025
* Configure all sources with CSP_* vars. Space separated source list. * Fall back to `config.x.content_security_policy.*` * Move our sources to fizzy-saas References basecamp/fizzy-saas#24
adjogima
added a commit
that referenced
this pull request
Dec 11, 2025
* main: (117 commits) Explain that the upload URL is account-scope Allow direct uploads via API Storage: ignore jobs for now-deleted targets API: Support `created_at` for API card and comment creation (#2056) Enforce CSP (#2070) CSP: full config with env vars per source (#2069) Speedy, auditable, deadlock-resistant storage tracking (#2026) Gitleaks: ignore legit non-sensitive API keys and tokens in docs/ and test/ (#2068) Get gitleaks-audit green again Bump actions/checkout from 4 to 6 (#2047) Bump docker/login-action from 3.5.0 to 3.6.0 (#2046) Bump docker/metadata-action from 5.8.0 to 5.10.0 (#2045) Bump sigstore/cosign-installer from 3.9.2 to 4.0.0 (#2044) make MySQL SSL mode configurable via env var (#2036) Update tip text for turning a card into a Golden Ticket Revert "Fix Lexxy prompt list padding by lowering rich-text specificity" Fix Lexxy prompt list padding by lowering rich-text specificity Improve phrasing Fix crash due to missing partial Fix status and filter mistakes ...
adjogima
added a commit
that referenced
this pull request
Dec 11, 2025
…tylesheets+edits * mobile-app/scoped-stylesheets: (117 commits) Explain that the upload URL is account-scope Allow direct uploads via API Storage: ignore jobs for now-deleted targets API: Support `created_at` for API card and comment creation (#2056) Enforce CSP (#2070) CSP: full config with env vars per source (#2069) Speedy, auditable, deadlock-resistant storage tracking (#2026) Gitleaks: ignore legit non-sensitive API keys and tokens in docs/ and test/ (#2068) Get gitleaks-audit green again Bump actions/checkout from 4 to 6 (#2047) Bump docker/login-action from 3.5.0 to 3.6.0 (#2046) Bump docker/metadata-action from 5.8.0 to 5.10.0 (#2045) Bump sigstore/cosign-installer from 3.9.2 to 4.0.0 (#2044) make MySQL SSL mode configurable via env var (#2036) Update tip text for turning a card into a Golden Ticket Revert "Fix Lexxy prompt list padding by lowering rich-text specificity" Fix Lexxy prompt list padding by lowering rich-text specificity Improve phrasing Fix crash due to missing partial Fix status and filter mistakes ...
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
config.x.content_security_policy.*References basecamp/fizzy-saas#24