Fix invalid require-trusted-types-for CSP directive

require-trusted-types-for only accepts 'script'; emitting 'none' produced an invalid directive that browsers rejected. Omit the directive entirely to leave Trusted Types unenforced (needed for WebAuthn). Bump version to 0.16.1. Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
2026-06-21 15:39:35 +10:00
parent 85f50bfc96
commit 020759bfb3
2 changed files with 5 additions and 4 deletions
--- a/config/initializers/version.rb
+++ b/config/initializers/version.rb
@@ -1,5 +1,5 @@
 # frozen_string_literal: true

 module Clinch
-  VERSION = "0.16.0"
+  VERSION = "0.16.1"
 end