From d9dcbfccb90e50ae2b977bb674845ec3b994bf1a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 19 Mar 2021 23:47:29 -0400
Subject: [PATCH 1/2] Bump jinja2 from 2.10.3 to 2.11.3 (#229)

Bumps [jinja2](https://github.com/pallets/jinja) from 2.10.3 to 2.11.3.
- [Release notes](https://github.com/pallets/jinja/releases)
- [Changelog](https://github.com/pallets/jinja/blob/master/CHANGES.rst)
- [Commits](https://github.com/pallets/jinja/compare/2.10.3...2.11.3)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 requirements.txt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/requirements.txt b/requirements.txt
index 04ff631..aeeaad1 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -11,7 +11,7 @@ Flask==1.1.1
 Flask-Session==0.3.2
 idna==2.9
 itsdangerous==1.1.0
-Jinja2==2.10.3
+Jinja2==2.11.3
 MarkupSafe==1.1.1
 more-itertools==8.3.0
 packaging==20.4

From e4299f7a72b57a7967a705824c24d3fa7ddc4bd7 Mon Sep 17 00:00:00 2001
From: Shimul <shimuldn@users.noreply.github.com>
Date: Sun, 21 Mar 2021 05:22:06 +0530
Subject: [PATCH 2/2] Handle manifest-src in CSP (#231)

---
 app/__init__.py | 1 +
 1 file changed, 1 insertion(+)

diff --git a/app/__init__.py b/app/__init__.py
index bff20fc..8fc1c21 100644
--- a/app/__init__.py
+++ b/app/__init__.py
@@ -41,6 +41,7 @@ app.config['BANG_FILE'] = os.path.join(
     app.config['BANG_PATH'],
     'bangs.json')
 app.config['CSP'] = 'default-src \'none\';' \
+                    'manifest-src \'self\';' \
                     'img-src \'self\';' \
                     'style-src \'self\' \'unsafe-inline\';' \
                     'script-src \'self\';' \