feat(security,ui): self-host React deps, Tailwind, fonts; strict CSP; local QR; better selection state
Replace CDN React/ReactDOM/Babel with local libs; remove Babel and inline scripts Build Tailwind locally, add safelist; switch to assets/tailwind.css Self-host Font Awesome and Inter (CSS + woff2); remove external font CDNs Implement strict CSP (no unsafe-inline/eval; scripts/styles/fonts from self) Extract inline handlers; move PWA scripts to external files Add local QR code generation (qrcode lib) and remove api.qrserver.com Improve SessionTypeSelector visual selection (highlighted background and ring) Keep PWA working with service worker and offline assets Refs: CSP hardening, offline-first, no external dependencies
This commit is contained in:
lockbitchat
12
node_modules/qrcode/lib/index.js
generated
vendored
Normal file
12
node_modules/qrcode/lib/index.js
generated
vendored
Normal file
@@ -0,0 +1,12 @@
|
||||
/*
|
||||
*copyright Ryan Day 2012
|
||||
*
|
||||
* Licensed under the MIT license:
|
||||
* http://www.opensource.org/licenses/mit-license.php
|
||||
*
|
||||
* this is the main server side application file for node-qrcode.
|
||||
* these exports use serverside canvas api methods for file IO and buffers
|
||||
*
|
||||
*/
|
||||
|
||||
module.exports = require('./server')
|
||||
Reference in New Issue
Block a user