From 31d6ba0656fc4380efd34ff65e00be6f583adf45 Mon Sep 17 00:00:00 2001
From: bbimber <bbimber@gmail.com>
Date: Tue, 16 Sep 2025 06:52:50 -0700
Subject: [PATCH] Support Directive.Script in
 ContentSecurityPolicyFilter.registerAllowedSources

---
 mGAP/src/org/labkey/mgap/mGAPModule.java | 1 +
 1 file changed, 1 insertion(+)

diff --git a/mGAP/src/org/labkey/mgap/mGAPModule.java b/mGAP/src/org/labkey/mgap/mGAPModule.java
index 3799f84c..a941f7fd 100644
--- a/mGAP/src/org/labkey/mgap/mGAPModule.java
+++ b/mGAP/src/org/labkey/mgap/mGAPModule.java
@@ -112,6 +112,7 @@ public void doStartupAfterSpringConfig(ModuleContext moduleContext)
         ContentSecurityPolicyFilter.registerAllowedSources(this.getClass().getName(), Directive.Style, "https://code.jquery.com", "https://www.gstatic.com");
         ContentSecurityPolicyFilter.registerAllowedSources(this.getClass().getName(), Directive.Font, "https://*.fontawesome.com");
         ContentSecurityPolicyFilter.registerAllowedSources(this.getClass().getName(), Directive.Connection, "https://oss.maxcdn.com");
+        ContentSecurityPolicyFilter.registerAllowedSources(this.getClass().getName(), Directive.Script, "https://*/cdn-cgi/scripts/*/cloudflare-static/email-decode.min.js");
 
         new PipelineStartup();
     }