For a few hours now, images have suddenly been served from cloudfront.net servers for branch deployments.
For these deployments, Safari now complains about the img-src directive of the Content Security Policy.
For instance, at https://preview-2e396b6--erlebe-salsa-website.netlify.app:
Refused to load https://d33wubrfki0l68.cloudfront.net/0dbfba16fef3cbea4a3daa24da271dc28290ceb1/67d4d/assets/img/salsa_q1.webp because it does not appear in the img-src directive of the Content Security Policy.
Is this happening on any other browser for you or just safari?
This issue is not browser related. Netlify seems to somehow modify the served HTML so that img tags contain references to https://d33wubrfki0l68.cloudfront.net/.
In older deployments, the HTML code served through Netlify is as follows:
<img src="/assets/img/salsa_q1.webp" ...
In more recent ones:
<img src="https://d33wubrfki0l68.cloudfront.net/0dbfba16fef3cbea4a3daa24da271dc28290ceb1/67d4d/assets/img/salsa_q1.webp" ...
This should be resolved. Could you please re-deploy?
Works again at https://preview-8f4e801--erlebe-salsa-website.netlify.app with CSP img-src 'self' data:;.
HTML is not transformed anymore, at least in no way that would cause that issue:
<img src="/assets/img/salsa_q1.webp" ...
Thank you very much! 