Open LLM text
Share with AI
Ask Claude Ask ChatGPT Ask Gemini Ask Copilot
1 min read 73 words Updated 3 days ago

Chirp 0.3.3

Fix default CSP for htmx/Alpine.js and bump chirp-ui to 0.2.3

Focus: fix default Content-Security-Policy for framework scripts and bump chirp-ui.

Fixed

  • CSP defaultsSecurityHeadersMiddleware and CSPNonceMiddleware now allow unpkg.com (htmx), cdn.jsdelivr.net (Alpine.js), and inline scripts in the default script-src, fixing silent breakage of htmx/JS actions.

Dependencies

  • chirp-ui>=0.2.3 (bumped from >=0.2.2)

Upgrading

uv pip install --upgrade "bengal-chirp>=0.3.3"

pip install --upgrade "bengal-chirp>=0.3.3"