From cee8c9365953b0bd7ade7eb479338805c27bc787 Mon Sep 17 00:00:00 2001
From: xenofem <xenofem@xeno.science>
Date: Thu, 28 Apr 2022 01:06:39 -0400
Subject: [PATCH] Content-Security-Policy: sandbox for user-submitted files

---
 src/download.rs | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/download.rs b/src/download.rs
index c86d801..830e9fb 100644
--- a/src/download.rs
+++ b/src/download.rs
@@ -45,6 +45,7 @@ impl DownloadingFile {
 
         let mut res = HttpResponse::build(StatusCode::OK);
 
+        res.insert_header((header::CONTENT_SECURITY_POLICY, "sandbox"));
         res.insert_header((header::CONTENT_TYPE, mime::APPLICATION_OCTET_STREAM));
         res.insert_header((
             header::CONTENT_DISPOSITION,