From 9b40c983ae7b8bc943dd02f49679cb3371d9f6f6 Mon Sep 17 00:00:00 2001
From: Tommy <contact@tommytran.io>
Date: Tue, 15 Aug 2023 17:12:07 -0700
Subject: [PATCH] Add upgrade-insecure-requests;

Signed-off-by: Tommy <contact@tommytran.io>
---
 _headers | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/_headers b/_headers
index 7dd9d54..2ab126d 100644
--- a/_headers
+++ b/_headers
@@ -1,6 +1,6 @@
 /
   Strict-Transport-Security : max-age=63072000; includeSubDomains; preload
-  Content-Security-Policy : default-src 'self'; font-src 'self' fonts.gstatic.com; style-src 'self' fonts.googleapis.com; script-src 'self' 'unsafe-inline'; form-action 'none'; frame-ancestors 'none'; block-all-mixed-content; base-uri 'none'
+  Content-Security-Policy : default-src 'self'; font-src 'self' fonts.gstatic.com; style-src 'self' fonts.googleapis.com; script-src 'self' 'unsafe-inline'; form-action 'none'; frame-ancestors 'none'; upgrade-insecure-requests; block-all-mixed-content; base-uri 'none'
   X-Content-Type-Options : nosniff
   Referrer-Policy : no-referrer
   X-Frame-Options : DENY