Remove jQuery CDN from CSP

No longer needed since
freedomofpress · Apr 17, 2018 · 714f37f · 714f37f
1 parent 5e088c1
commit 714f37f
Showing 1 changed file with 0 additions and 2 deletions.
diff --git a/securedrop/settings/base.py b/securedrop/settings/base.py
@@ -353,7 +353,6 @@
 # Content Security Policy
 # script:
 # unsafe-eval for client/common/js/common.js:645 and /client/tor/js/torEntry.js:89
-# jquery for wagtail/django debug
 # All for inline scripts in wagtail (admin) login page line 44 and 92
 # style:
 # #1 through #8needed for inline style for svg in sliding-nav:
@@ -363,7 +362,6 @@
 CSP_DEFAULT_SRC = ("'self'",)
 CSP_SCRIPT_SRC = (
     "'self'",
-    'http://ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js',
     "'unsafe-eval'",
 )
 CSP_STYLE_SRC = (