From 14045975ef2ef71ce40caa00ddb164b47595b7de Mon Sep 17 00:00:00 2001
From: Cristen Jones <cjones3@mbta.com>
Date: Mon, 25 Nov 2024 08:15:54 -0500
Subject: [PATCH] adjustment

---
 lib/dotcom_web/plugs/secure_headers.ex | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/lib/dotcom_web/plugs/secure_headers.ex b/lib/dotcom_web/plugs/secure_headers.ex
index 61b62cf9c7..d06644f009 100644
--- a/lib/dotcom_web/plugs/secure_headers.ex
+++ b/lib/dotcom_web/plugs/secure_headers.ex
@@ -53,8 +53,6 @@ defmodule DotcomWeb.Plugs.SecureHeaders do
     script: ~w[
       script-src
       'nonce-{NONCE}'
-      'self'
-      'strict-dynamic'
       'unsafe-inline'
       *.arcgis.com
       *.google.com
@@ -67,6 +65,7 @@ defmodule DotcomWeb.Plugs.SecureHeaders do
       www.google-analytics.com
       www.gstatic.com
       https://*.googletagmanager.com
+      'self'
     ],
     style: ~w[style-src 'self' 'unsafe-inline' www.gstatic.com],
     require: ~w[require-trusted-types-for 'script'],