feat(Sky): enhance security policies and mobile PWA capabilities

NikolaRHristov · NikolaRHristov · commit 23f5b9c99635 · 2025-05-06T10:43:26.000+03:00
- Set default document title to "FIDDEE" in Meta component to establish brand consistency
- Implement strict Content Security Policy in Application.astro:
  - Restrict script sources to self + unsafe-eval for VS Code compatibility
  - Enable WebSocket connections to Tauri backend (wss://tauri.localhost)
  - Configure trusted types for critical UI components like editor and notebook
  - Allow vscode-remote-resource domains for extension assets
- Add mobile web app meta tags (apple-mobile-web-app-capable) for iOS PWA support
- Disable viewport scaling to ensure consistent editor UI behavior
- Prepare infrastructure for future touch icon implementation (commented link)

These changes strengthen security for extension execution while maintaining VS Code webview compatibility. The PWA enhancements align with Land's cross-platform goals by improving mobile device integration. The CSP policies balance security with requirements for VS Code extension host shim (Cocoon) operation.
diff --git a/Source/Function/Meta.astro b/Source/Function/Meta.astro
@@ -1,5 +1,5 @@
 ---
-const { Title = "", Description = "" } = Astro.props;
+const { Title = "FIDDEE", Description = "" } = Astro.props;
 
 interface Props {
 	Title?: string;
@@ -11,7 +11,17 @@ interface Props {
 
 <meta charset="utf-8" />
 <meta name="description" content={Description} />
-<meta name="viewport" content="width=device-width, initial-scale=1.0" />
+
+<meta name="mobile-web-app-capable" content="yes" />
+<meta name="apple-mobile-web-app-capable" content="yes" />
+<meta name="apple-mobile-web-app-title" content="FIDDEE" />
+
+<!-- <link rel="apple-touch-icon" href="{{WORKBENCH_WEB_BASE_URL}}/resources/server/code-192.png" /> -->
+
+<meta
+	name="viewport"
+	content="width=device-width, initial-scale=1.0, maximum-scale=1.0, minimum-scale=1.0, user-scalable=no"
+/>
 <meta name="theme-color" content="#ffffff" />
 <meta name="format-detection" content="telephone=no" />
 <meta name="twitter:dnt" content="on" />
diff --git a/Source/pages/Application.astro b/Source/pages/Application.astro
@@ -159,12 +159,88 @@ const Browser = process.env["Browser"] === "true";
 ---
 
 <Layout>
+	<meta
+		http-equiv="Content-Security-Policy"
+		content="
+				default-src
+					'none'
+				;
+				img-src
+					'self'
+					data:
+					blob:
+					vscode-remote-resource:
+					vscode-managed-remote-resource:
+					https:
+				;
+				manifest-src
+					'self'
+				;
+				media-src
+					'self'
+				;
+				frame-src
+					'self'
+					vscode-webview:
+				;
+				script-src
+					'self'
+					'unsafe-eval'
+					blob:
+				;
+				style-src
+					'self'
+					'unsafe-inline'
+				;
+				connect-src
+					'self'
+					wss://tauri.localhost
+					https:
+				;
+				font-src
+					'self'
+					vscode-remote-resource:
+					vscode-managed-remote-resource:
+				;
+				block-all-mixed-content
+				;
+				upgrade-insecure-requests
+				;
+				require-trusted-types-for
+					'script'
+				;
+				trusted-types
+					WorkerApplication
+					amdLoader
+					cellRendererEditorText
+					defaultWorkerFactory
+					diffEditorWidget
+					diffReview
+					domLineBreaksComputer
+					dompurify
+					editorGhostText
+					editorViewLayer
+					notebookRenderer
+					stickyScrollViewLayer
+					tokenizeToString
+					notebookChatEditController
+				;
+		"
+		slot="Meta"
+	/>
+
 	<meta
 		id="vscode-workbench-web-configuration"
 		data-settings={JSON.stringify(Default)}
 		slot="Meta"
 	/>
 
+	<meta
+		id="vscode-workbench-auth-session"
+		data-settings={JSON.stringify({})}
+		slot="Meta"
+	/>
+
 	<script is:inline type="module" define:vars={{ Site }} slot="Head">
 		// @ts-expect-error
 		globalThis._VSCODE_FILE_ROOT = `${Site}/Static/Application/`;
diff --git a/Target/Application/index.html b/Target/Application/index.html
@@ -1 +1 @@
-<!DOCTYPE html><html class=no-js data-beasties-container dir=ltr lang=en><head><script type=module>document.documentElement.classList.remove("no-js"),document.documentElement.classList.add("js")</script><title></title><meta charset=utf-8><meta content name=description><meta content="width=device-width,initial-scale=1" name=viewport><meta content=#ffffff name=theme-color><meta content="telephone=no" name=format-detection><meta content=on name=twitter:dnt><meta data-settings={&#34;remoteAuthority&#34;:&#34;&#34;,&#34;serverBasePath&#34;:&#34;/&#34;,&#34;connectionToken&#34;:&#34;&#34;,&#34;enableWorkspaceTrust&#34;:true,&#34;settingsSyncOptions&#34;:{&#34;enabled&#34;:false},&#34;productConfiguration&#34;:{&#34;embedderIdentifier&#34;:&#34;desktop&#34;,&#34;nameShort&#34;:&#34;FIDDEE&#34;,&#34;nameLong&#34;:&#34;FIDDEE&#34;,&#34;applicationName&#34;:&#34;fiddee&#34;},&#34;developmentOptions&#34;:{&#34;logLevel&#34;:0,&#34;enableSmokeTestDriver&#34;:false}} id=vscode-workbench-web-configuration><link href=/Manifest.json rel=manifest crossorigin=use-credentials><script type=module>const Site="https://tauri.localhost/";globalThis._VSCODE_FILE_ROOT=`${Site}/Static/Application/`</script><script type=module>const Worker="/Worker.js?BASE_REMOTE=https%3A%2F%2Ftauri.localhost%2F&Time=1746451962977";window._WORKER=Worker</script><style>:root{--vscode-sash-size:4px;--vscode-sash-hover-size:4px}@property --chat-editing-last-edit-shift{syntax:"<percentage>";initial-value:100%;inherits:false}@property --inline-chat-frame-progress{syntax:"<percentage>";initial-value:0%;inherits:false}body{height:100%;width:100%;margin:0;padding:0;overflow:hidden;font-size:11px;user-select:none;-webkit-user-select:none}</style><link href=/_astro/Browser.CRM72xFj.css rel=stylesheet media=print onload="this.media=&#34;all&#34;"><noscript><link href=/_astro/Browser.CRM72xFj.css rel=stylesheet></noscript></head><body aria-label><script type=module>window._LOAD_CSS_WORKER=e=>{const r=e+(e.includes("?")?"&":"?")+"Skip=Intercept";try{if(document.querySelector(`link[href="${r}"]`))return;const e=document.createElement("link");e.rel="stylesheet",e.type="text/css",e.href=r,e.onerror=r=>{e.remove()},e.onload=()=>{},document.head.appendChild(e)}catch{}},(()=>{if(window._POLICY_WORKER=window._POLICY_WORKER||{},window.trustedTypes&&window.trustedTypes.createPolicy&&!window._POLICY_WORKER.WorkerApplication)try{window._POLICY_WORKER.WorkerApplication=window.trustedTypes.createPolicy("WorkerApplication",{createScriptURL:e=>{if(e&&/^\/[^/\\:]+\.js(\?.*)?$/.test(e))return e;throw new TypeError(`Invalid URL format for service worker script: ${e}`)}})}catch(e){e instanceof TypeError&&e.message.includes("already exists")}})();const e="string"==typeof window._WORKER?window._WORKER:"/Worker.js",r="WorkerReload";if("serviceWorker"in navigator){navigator.serviceWorker.addEventListener("controllerchange",(()=>{"true"===sessionStorage.getItem(r)&&(sessionStorage.removeItem(r),window.location.reload())})),navigator.serviceWorker.addEventListener("message",(e=>{"New"===e.data?.Version&&window.location.reload()}));const t=async()=>{const t=!!navigator.serviceWorker.controller;try{let o;if(window.trustedTypes)try{const r=window._POLICY_WORKER?.WorkerApplication;if(!r)throw new Error("Required Trusted Types policy 'WorkerApplication' not found. Ensure Policy.js executes first and succeeds.");o=r.createScriptURL(e)}catch(e){throw e}else o=e;const i=await navigator.serviceWorker.register(o,{scope:"/Application",type:"module"});i.installing||i.waiting||i.active,await navigator.serviceWorker.ready;const n=!!navigator.serviceWorker.controller;if(t||n)sessionStorage.getItem(r)&&sessionStorage.removeItem(r);else{if(!sessionStorage.getItem(r))return sessionStorage.setItem(r,"true"),void window.location.reload();sessionStorage.removeItem(r)}}catch(e){e instanceof TypeError&&(e.message.includes("TrustedScriptURL")||e.message.includes("Trusted Type")),sessionStorage.removeItem(r)}};"loading"===document.readyState?document.addEventListener("DOMContentLoaded",t):t()}</script><script type=module src=/_astro/Browser.astro_astro_type_script_index_0_lang.Cm3WIShT.js></script></body></html>
+<!DOCTYPE html><html class=no-js data-beasties-container dir=ltr lang=en><head><script type=module>document.documentElement.classList.remove("no-js"),document.documentElement.classList.add("js")</script><title>FIDDEE</title><meta charset=utf-8><meta content name=description><meta content=yes name=mobile-web-app-capable><meta content=yes name=apple-mobile-web-app-capable><meta content=FIDDEE name=apple-mobile-web-app-title><meta content="width=device-width,initial-scale=1,maximum-scale=1,minimum-scale=1,user-scalable=no" name=viewport><meta content=#ffffff name=theme-color><meta content="telephone=no" name=format-detection><meta content=on name=twitter:dnt><meta content=" default-src 'none' ; img-src 'self' data: blob: vscode-remote-resource: vscode-managed-remote-resource: https: ; manifest-src 'self' ; media-src 'self' ; frame-src 'self' vscode-webview: ; script-src 'self' 'unsafe-eval' blob: ; style-src 'self' 'unsafe-inline' ; connect-src 'self' wss://tauri.localhost https: ; font-src 'self' vscode-remote-resource: vscode-managed-remote-resource: ; block-all-mixed-content ; upgrade-insecure-requests ; require-trusted-types-for 'script' ; trusted-types WorkerApplication amdLoader cellRendererEditorText defaultWorkerFactory diffEditorWidget diffReview domLineBreaksComputer dompurify editorGhostText editorViewLayer notebookRenderer stickyScrollViewLayer tokenizeToString notebookChatEditController ; " http-equiv=Content-Security-Policy><meta data-settings={&#34;remoteAuthority&#34;:&#34;&#34;,&#34;serverBasePath&#34;:&#34;/&#34;,&#34;connectionToken&#34;:&#34;&#34;,&#34;enableWorkspaceTrust&#34;:true,&#34;settingsSyncOptions&#34;:{&#34;enabled&#34;:false},&#34;productConfiguration&#34;:{&#34;embedderIdentifier&#34;:&#34;desktop&#34;,&#34;nameShort&#34;:&#34;FIDDEE&#34;,&#34;nameLong&#34;:&#34;FIDDEE&#34;,&#34;applicationName&#34;:&#34;fiddee&#34;},&#34;developmentOptions&#34;:{&#34;logLevel&#34;:0,&#34;enableSmokeTestDriver&#34;:false}} id=vscode-workbench-web-configuration><meta data-settings={} id=vscode-workbench-auth-session><link href=/Manifest.json rel=manifest crossorigin=use-credentials><script type=module>const Site="https://tauri.localhost/";globalThis._VSCODE_FILE_ROOT=`${Site}/Static/Application/`</script><script type=module>const Worker="/Worker.js?BASE_REMOTE=https%3A%2F%2Ftauri.localhost%2F&Time=1746516769390";window._WORKER=Worker</script><style>:root{--vscode-sash-size:4px;--vscode-sash-hover-size:4px}@property --chat-editing-last-edit-shift{syntax:"<percentage>";initial-value:100%;inherits:false}@property --inline-chat-frame-progress{syntax:"<percentage>";initial-value:0%;inherits:false}body{height:100%;width:100%;margin:0;padding:0;overflow:hidden;font-size:11px;user-select:none;-webkit-user-select:none}</style><link href=/_astro/Browser.CRM72xFj.css rel=stylesheet media=print onload="this.media=&#34;all&#34;"><noscript><link href=/_astro/Browser.CRM72xFj.css rel=stylesheet></noscript></head><body aria-label><script type=module>window._LOAD_CSS_WORKER=e=>{const r=e+(e.includes("?")?"&":"?")+"Skip=Intercept";try{if(document.querySelector(`link[href="${r}"]`))return;const e=document.createElement("link");e.rel="stylesheet",e.type="text/css",e.href=r,e.onerror=r=>{e.remove()},e.onload=()=>{},document.head.appendChild(e)}catch{}},(()=>{if(window._POLICY_WORKER=window._POLICY_WORKER||{},window.trustedTypes&&window.trustedTypes.createPolicy&&!window._POLICY_WORKER.WorkerApplication)try{window._POLICY_WORKER.WorkerApplication=window.trustedTypes.createPolicy("WorkerApplication",{createScriptURL:e=>{if(e&&/^\/[^/\\:]+\.js(\?.*)?$/.test(e))return e;throw new TypeError(`Invalid URL format for service worker script: ${e}`)}})}catch(e){e instanceof TypeError&&e.message.includes("already exists")}})();const e="string"==typeof window._WORKER?window._WORKER:"/Worker.js",r="WorkerReload";if("serviceWorker"in navigator){navigator.serviceWorker.addEventListener("controllerchange",(()=>{"true"===sessionStorage.getItem(r)&&(sessionStorage.removeItem(r),window.location.reload())})),navigator.serviceWorker.addEventListener("message",(e=>{"New"===e.data?.Version&&window.location.reload()}));const t=async()=>{const t=!!navigator.serviceWorker.controller;try{let o;if(window.trustedTypes)try{const r=window._POLICY_WORKER?.WorkerApplication;if(!r)throw new Error("Required Trusted Types policy 'WorkerApplication' not found. Ensure Policy.js executes first and succeeds.");o=r.createScriptURL(e)}catch(e){throw e}else o=e;const i=await navigator.serviceWorker.register(o,{scope:"/Application",type:"module"});i.installing||i.waiting||i.active,await navigator.serviceWorker.ready;const n=!!navigator.serviceWorker.controller;if(t||n)sessionStorage.getItem(r)&&sessionStorage.removeItem(r);else{if(!sessionStorage.getItem(r))return sessionStorage.setItem(r,"true"),void window.location.reload();sessionStorage.removeItem(r)}}catch(e){e instanceof TypeError&&(e.message.includes("TrustedScriptURL")||e.message.includes("Trusted Type")),sessionStorage.removeItem(r)}};"loading"===document.readyState?document.addEventListener("DOMContentLoaded",t):t()}</script><script type=module src=/_astro/Browser.astro_astro_type_script_index_0_lang.Cm3WIShT.js></script></body></html>
diff --git a/Target/Worker.js b/Target/Worker.js
diff --git a/Target/index.html b/Target/index.html
@@ -1 +1 @@
-<!DOCTYPE html><html class=no-js data-beasties-container dir=ltr lang=en><head><script type=module>document.documentElement.classList.remove("no-js"),document.documentElement.classList.add("js")</script><title></title><meta charset=utf-8><meta content name=description><meta content="width=device-width,initial-scale=1" name=viewport><meta content=#ffffff name=theme-color><meta content="telephone=no" name=format-detection><meta content=on name=twitter:dnt><link crossorigin=use-credentials href=/Manifest.json rel=manifest></head><body aria-label><a href=/Application>Application</a></body></html>
+<!DOCTYPE html><html class=no-js data-beasties-container dir=ltr lang=en><head><script type=module>document.documentElement.classList.remove("no-js"),document.documentElement.classList.add("js")</script><title>FIDDEE</title><meta charset=utf-8><meta content name=description><meta content=yes name=mobile-web-app-capable><meta content=yes name=apple-mobile-web-app-capable><meta content=FIDDEE name=apple-mobile-web-app-title><meta content="width=device-width,initial-scale=1,maximum-scale=1,minimum-scale=1,user-scalable=no" name=viewport><meta content=#ffffff name=theme-color><meta content="telephone=no" name=format-detection><meta content=on name=twitter:dnt><link crossorigin=use-credentials href=/Manifest.json rel=manifest></head><body aria-label><a href=/Application>Application</a></body></html>

Original file line number	Diff line number	Diff line change
`@@ -1 +1 @@`
`1`		-<!DOCTYPE html><html class=no-js data-beasties-container dir=ltr lang=en><head><script type=module>document.documentElement.classList.remove("no-js"),document.documentElement.classList.add("js")</script><title></title><meta charset=utf-8><meta content name=description><meta content="width=device-width,initial-scale=1" name=viewport><meta content=#ffffff name=theme-color><meta content="telephone=no" name=format-detection><meta content=on name=twitter:dnt><meta data-settings={"remoteAuthority":"","serverBasePath":"/","connectionToken":"","enableWorkspaceTrust":true,"settingsSyncOptions":{"enabled":false},"productConfiguration":{"embedderIdentifier":"desktop","nameShort":"FIDDEE","nameLong":"FIDDEE","applicationName":"fiddee"},"developmentOptions":{"logLevel":0,"enableSmokeTestDriver":false}} id=vscode-workbench-web-configuration><link href=/Manifest.json rel=manifest crossorigin=use-credentials><script type=module>const Site="https://tauri.localhost/";globalThis._VSCODE_FILE_ROOT=`${Site}/Static/Application/`</script><script type=module>const Worker="/Worker.js?BASE_REMOTE=https%3A%2F%2Ftauri.localhost%2F&Time=1746451962977";window._WORKER=Worker</script><style>:root{--vscode-sash-size:4px;--vscode-sash-hover-size:4px}@property --chat-editing-last-edit-shift{syntax:"<percentage>";initial-value:100%;inherits:false}@property --inline-chat-frame-progress{syntax:"<percentage>";initial-value:0%;inherits:false}body{height:100%;width:100%;margin:0;padding:0;overflow:hidden;font-size:11px;user-select:none;-webkit-user-select:none}</style><link href=/_astro/Browser.CRM72xFj.css rel=stylesheet media=print onload="this.media="all""><noscript><link href=/_astro/Browser.CRM72xFj.css rel=stylesheet></noscript></head><body aria-label><script type=module>window._LOAD_CSS_WORKER=e=>{const r=e+(e.includes("?")?"&":"?")+"Skip=Intercept";try{if(document.querySelector(`link[href="${r}"]`))return;const e=document.createElement("link");e.rel="stylesheet",e.type="text/css",e.href=r,e.onerror=r=>{e.remove()},e.onload=()=>{},document.head.appendChild(e)}catch{}},(()=>{if(window._POLICY_WORKER=window._POLICY_WORKER\|\|{},window.trustedTypes&&window.trustedTypes.createPolicy&&!window._POLICY_WORKER.WorkerApplication)try{window._POLICY_WORKER.WorkerApplication=window.trustedTypes.createPolicy("WorkerApplication",{createScriptURL:e=>{if(e&&/^\/[^/\\:]+\.js(\?.*)?$/.test(e))return e;throw new TypeError(`Invalid URL format for service worker script: ${e}`)}})}catch(e){e instanceof TypeError&&e.message.includes("already exists")}})();const e="string"==typeof window._WORKER?window._WORKER:"/Worker.js",r="WorkerReload";if("serviceWorker"in navigator){navigator.serviceWorker.addEventListener("controllerchange",(()=>{"true"===sessionStorage.getItem(r)&&(sessionStorage.removeItem(r),window.location.reload())})),navigator.serviceWorker.addEventListener("message",(e=>{"New"===e.data?.Version&&window.location.reload()}));const t=async()=>{const t=!!navigator.serviceWorker.controller;try{let o;if(window.trustedTypes)try{const r=window._POLICY_WORKER?.WorkerApplication;if(!r)throw new Error("Required Trusted Types policy 'WorkerApplication' not found. Ensure Policy.js executes first and succeeds.");o=r.createScriptURL(e)}catch(e){throw e}else o=e;const i=await navigator.serviceWorker.register(o,{scope:"/Application",type:"module"});i.installing\|\|i.waiting\|\|i.active,await navigator.serviceWorker.ready;const n=!!navigator.serviceWorker.controller;if(t\|\|n)sessionStorage.getItem(r)&&sessionStorage.removeItem(r);else{if(!sessionStorage.getItem(r))return sessionStorage.setItem(r,"true"),void window.location.reload();sessionStorage.removeItem(r)}}catch(e){e instanceof TypeError&&(e.message.includes("TrustedScriptURL")\|\|e.message.includes("Trusted Type")),sessionStorage.removeItem(r)}};"loading"===document.readyState?document.addEventListener("DOMContentLoaded",t):t()}</script><script type=module src=/_astro/Browser.astro_astro_type_script_index_0_lang.Cm3WIShT.js></script></body></html>
	`1`	+<!DOCTYPE html><html class=no-js data-beasties-container dir=ltr lang=en><head><script type=module>document.documentElement.classList.remove("no-js"),document.documentElement.classList.add("js")</script><title>FIDDEE</title><meta charset=utf-8><meta content name=description><meta content=yes name=mobile-web-app-capable><meta content=yes name=apple-mobile-web-app-capable><meta content=FIDDEE name=apple-mobile-web-app-title><meta content="width=device-width,initial-scale=1,maximum-scale=1,minimum-scale=1,user-scalable=no" name=viewport><meta content=#ffffff name=theme-color><meta content="telephone=no" name=format-detection><meta content=on name=twitter:dnt><meta content=" default-src 'none' ; img-src 'self' data: blob: vscode-remote-resource: vscode-managed-remote-resource: https: ; manifest-src 'self' ; media-src 'self' ; frame-src 'self' vscode-webview: ; script-src 'self' 'unsafe-eval' blob: ; style-src 'self' 'unsafe-inline' ; connect-src 'self' wss://tauri.localhost https: ; font-src 'self' vscode-remote-resource: vscode-managed-remote-resource: ; block-all-mixed-content ; upgrade-insecure-requests ; require-trusted-types-for 'script' ; trusted-types WorkerApplication amdLoader cellRendererEditorText defaultWorkerFactory diffEditorWidget diffReview domLineBreaksComputer dompurify editorGhostText editorViewLayer notebookRenderer stickyScrollViewLayer tokenizeToString notebookChatEditController ; " http-equiv=Content-Security-Policy><meta data-settings={"remoteAuthority":"","serverBasePath":"/","connectionToken":"","enableWorkspaceTrust":true,"settingsSyncOptions":{"enabled":false},"productConfiguration":{"embedderIdentifier":"desktop","nameShort":"FIDDEE","nameLong":"FIDDEE","applicationName":"fiddee"},"developmentOptions":{"logLevel":0,"enableSmokeTestDriver":false}} id=vscode-workbench-web-configuration><meta data-settings={} id=vscode-workbench-auth-session><link href=/Manifest.json rel=manifest crossorigin=use-credentials><script type=module>const Site="https://tauri.localhost/";globalThis._VSCODE_FILE_ROOT=`${Site}/Static/Application/`</script><script type=module>const Worker="/Worker.js?BASE_REMOTE=https%3A%2F%2Ftauri.localhost%2F&Time=1746516769390";window._WORKER=Worker</script><style>:root{--vscode-sash-size:4px;--vscode-sash-hover-size:4px}@property --chat-editing-last-edit-shift{syntax:"<percentage>";initial-value:100%;inherits:false}@property --inline-chat-frame-progress{syntax:"<percentage>";initial-value:0%;inherits:false}body{height:100%;width:100%;margin:0;padding:0;overflow:hidden;font-size:11px;user-select:none;-webkit-user-select:none}</style><link href=/_astro/Browser.CRM72xFj.css rel=stylesheet media=print onload="this.media="all""><noscript><link href=/_astro/Browser.CRM72xFj.css rel=stylesheet></noscript></head><body aria-label><script type=module>window._LOAD_CSS_WORKER=e=>{const r=e+(e.includes("?")?"&":"?")+"Skip=Intercept";try{if(document.querySelector(`link[href="${r}"]`))return;const e=document.createElement("link");e.rel="stylesheet",e.type="text/css",e.href=r,e.onerror=r=>{e.remove()},e.onload=()=>{},document.head.appendChild(e)}catch{}},(()=>{if(window._POLICY_WORKER=window._POLICY_WORKER\|\|{},window.trustedTypes&&window.trustedTypes.createPolicy&&!window._POLICY_WORKER.WorkerApplication)try{window._POLICY_WORKER.WorkerApplication=window.trustedTypes.createPolicy("WorkerApplication",{createScriptURL:e=>{if(e&&/^\/[^/\\:]+\.js(\?.*)?$/.test(e))return e;throw new TypeError(`Invalid URL format for service worker script: ${e}`)}})}catch(e){e instanceof TypeError&&e.message.includes("already exists")}})();const e="string"==typeof window._WORKER?window._WORKER:"/Worker.js",r="WorkerReload";if("serviceWorker"in navigator){navigator.serviceWorker.addEventListener("controllerchange",(()=>{"true"===sessionStorage.getItem(r)&&(sessionStorage.removeItem(r),window.location.reload())})),navigator.serviceWorker.addEventListener("message",(e=>{"New"===e.data?.Version&&window.location.reload()}));const t=async()=>{const t=!!navigator.serviceWorker.controller;try{let o;if(window.trustedTypes)try{const r=window._POLICY_WORKER?.WorkerApplication;if(!r)throw new Error("Required Trusted Types policy 'WorkerApplication' not found. Ensure Policy.js executes first and succeeds.");o=r.createScriptURL(e)}catch(e){throw e}else o=e;const i=await navigator.serviceWorker.register(o,{scope:"/Application",type:"module"});i.installing\|\|i.waiting\|\|i.active,await navigator.serviceWorker.ready;const n=!!navigator.serviceWorker.controller;if(t\|\|n)sessionStorage.getItem(r)&&sessionStorage.removeItem(r);else{if(!sessionStorage.getItem(r))return sessionStorage.setItem(r,"true"),void window.location.reload();sessionStorage.removeItem(r)}}catch(e){e instanceof TypeError&&(e.message.includes("TrustedScriptURL")\|\|e.message.includes("Trusted Type")),sessionStorage.removeItem(r)}};"loading"===document.readyState?document.addEventListener("DOMContentLoaded",t):t()}</script><script type=module src=/_astro/Browser.astro_astro_type_script_index_0_lang.Cm3WIShT.js></script></body></html>