From 7b96db8ab34f6e945acc2f585232683a965c5cd5 Mon Sep 17 00:00:00 2001
From: chefjackson <116779127+chefjackson@users.noreply.github.com>
Date: Wed, 18 Sep 2024 17:22:30 +0800
Subject: [PATCH] chore: Add security header (#10694)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

<!--
Before opening a pull request, please read the [contributing
guidelines](https://github.com/pancakeswap/pancake-frontend/blob/develop/CONTRIBUTING.md)
first
-->


<!-- start pr-codex -->

---

## PR-Codex overview
This PR adds a Content-Security-Policy header with frame-ancestors
'self' value to improve security in `next.config.mjs`.

### Detailed summary
- Added Content-Security-Policy header with frame-ancestors 'self'
value.

> ✨ Ask PR-Codex anything about this PR by commenting with `/codex {your
question}`

<!-- end pr-codex -->
---
 apps/gamification/next.config.mjs | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/apps/gamification/next.config.mjs b/apps/gamification/next.config.mjs
index 58696d50074a4..2050f9adb3301 100755
--- a/apps/gamification/next.config.mjs
+++ b/apps/gamification/next.config.mjs
@@ -75,6 +75,10 @@ const nextConfig = {
             key: 'Cross-Origin-Opener-Policy',
             value: 'same-origin-allow-popups',
           },
+          {
+            key: 'Content-Security-Policy',
+            value: `frame-ancestors 'self'`,
+          },
         ],
       },
     ]