Merge pull request #228 from dargmuesli/feat/polyfills/reenable

feat(polyfills): reenable

src/components/vio/_/VioApp.vue

@@ -59,7 +59,7 @@ defineOgImageComponent(
 )
 useAppLayout()
 useFavicons()
-// usePolyfills() // hijacked ⚠️
+usePolyfills()
 useSchemaOrg([
   defineWebSite({
     description: siteConfig.description,

src/composables/useAppLayout.ts

@@ -10,7 +10,6 @@ export const useAppLayout = () => {
     },
   })
 
-  // TODO: convert to `useServerHeadSafe` (https://github.com/unjs/unhead/issues/221)
   // adding `Server` leads incorrect title template on hydration
   useSeoMeta({
     titleTemplate: (title) =>

src/composables/usePolyfills.ts

@@ -1,10 +1,9 @@
 import { POLYFILLS } from '../utils/constants'
 
 export const usePolyfills = () => {
-  return // hijacked ⚠️
   if (!POLYFILLS.length) return
 
-  const polyfillsUrl = `https://polyfill.io/v3/polyfill.min.js?features=${POLYFILLS.join(
+  const polyfillsUrl = `https://cdnjs.cloudflare.com/polyfill/v3/polyfill.min.js?features=${POLYFILLS.join(
     '%2C',
   )}&flags=gated`
 

src/utils/constants.ts

@@ -41,9 +41,9 @@ export const GET_CSP = (siteUrl: string) =>
     {
       // vio
       'manifest-src': [`${siteUrl}/site.webmanifest`],
-      // 'script-src-elem': [
-      //   'https://polyfill.io/v3/polyfill.min.js', // ESLint plugin compat
-      // ],
+      'script-src-elem': [
+        'https://cdnjs.cloudflare.com/polyfill/v3/polyfill.min.js', // ESLint plugin compat
+      ],
     },
     // {
     //   // nuxt-link-checker
@@ -155,7 +155,7 @@ export const I18N_VUE_CONFIG = {
 export const JWT_NAME = () =>
   `${process.env.NODE_ENV === 'production' ? '__Secure-' : ''}jwt`
 export const POLYFILLS = [
-  // 'Promise', // op_mini
+  'Promise', // op_mini
 ]
 export const REGEX_UUID =
   /^[a-z0-9]{8}-[a-z0-9]{4}-[a-z0-9]{4}-[a-z0-9]{4}-[a-z0-9]{12}$/

tests/e2e/specs/server/headers.spec.ts-snapshots/csp-production-chromium-linux.txt

@@ -1 +1 @@
-base-uri 'none'; default-src 'none'; connect-src https://cloudflareinsights.com https://*.analytics.google.com https://*.google-analytics.com https://*.googletagmanager.com 'self'; form-action 'none'; frame-ancestors 'none'; img-src https://*.google-analytics.com https://*.googletagmanager.com 'self' data:; manifest-src http://localhost:3001/site.webmanifest 'self'; style-src 'unsafe-inline' 'self'; report-to csp-endpoint; report-uri https://o4507259039973376.ingest.de.sentry.io/api/4507260561653840/security/?sentry_key=1e53178c1dba9b39147de4a21853a3e3; script-src-elem https://static.cloudflareinsights.com http://localhost:3001/cdn-cgi/scripts/ https://*.googletagmanager.com 'nonce' http://localhost:3001/_nuxt/;
+base-uri 'none'; default-src 'none'; connect-src https://cloudflareinsights.com https://*.analytics.google.com https://*.google-analytics.com https://*.googletagmanager.com 'self'; form-action 'none'; frame-ancestors 'none'; img-src https://*.google-analytics.com https://*.googletagmanager.com 'self' data:; manifest-src http://localhost:3001/site.webmanifest 'self'; style-src 'unsafe-inline' 'self'; report-to csp-endpoint; report-uri https://o4507259039973376.ingest.de.sentry.io/api/4507260561653840/security/?sentry_key=1e53178c1dba9b39147de4a21853a3e3; script-src-elem https://static.cloudflareinsights.com http://localhost:3001/cdn-cgi/scripts/ https://*.googletagmanager.com https://cdnjs.cloudflare.com/polyfill/v3/polyfill.min.js 'nonce' http://localhost:3001/_nuxt/;

tests/e2e/specs/server/headers.spec.ts-snapshots/csp-production-firefox-linux.txt

@@ -1 +1 @@
-base-uri 'none'; default-src 'none'; connect-src https://cloudflareinsights.com https://*.analytics.google.com https://*.google-analytics.com https://*.googletagmanager.com 'self'; form-action 'none'; frame-ancestors 'none'; img-src https://*.google-analytics.com https://*.googletagmanager.com 'self' data:; manifest-src http://localhost:3001/site.webmanifest 'self'; style-src 'unsafe-inline' 'self'; report-to csp-endpoint; report-uri https://o4507259039973376.ingest.de.sentry.io/api/4507260561653840/security/?sentry_key=1e53178c1dba9b39147de4a21853a3e3; script-src-elem https://static.cloudflareinsights.com http://localhost:3001/cdn-cgi/scripts/ https://*.googletagmanager.com 'nonce' http://localhost:3001/_nuxt/;
+base-uri 'none'; default-src 'none'; connect-src https://cloudflareinsights.com https://*.analytics.google.com https://*.google-analytics.com https://*.googletagmanager.com 'self'; form-action 'none'; frame-ancestors 'none'; img-src https://*.google-analytics.com https://*.googletagmanager.com 'self' data:; manifest-src http://localhost:3001/site.webmanifest 'self'; style-src 'unsafe-inline' 'self'; report-to csp-endpoint; report-uri https://o4507259039973376.ingest.de.sentry.io/api/4507260561653840/security/?sentry_key=1e53178c1dba9b39147de4a21853a3e3; script-src-elem https://static.cloudflareinsights.com http://localhost:3001/cdn-cgi/scripts/ https://*.googletagmanager.com https://cdnjs.cloudflare.com/polyfill/v3/polyfill.min.js 'nonce' http://localhost:3001/_nuxt/;

tests/e2e/specs/server/headers.spec.ts-snapshots/csp-production-webkit-linux.txt

@@ -1 +1 @@
-base-uri 'none'; default-src 'none'; connect-src https://cloudflareinsights.com https://*.analytics.google.com https://*.google-analytics.com https://*.googletagmanager.com 'self'; form-action 'none'; frame-ancestors 'none'; img-src https://*.google-analytics.com https://*.googletagmanager.com 'self' data:; manifest-src http://localhost:3001/site.webmanifest 'self'; style-src 'unsafe-inline' 'self'; report-to csp-endpoint; report-uri https://o4507259039973376.ingest.de.sentry.io/api/4507260561653840/security/?sentry_key=1e53178c1dba9b39147de4a21853a3e3; script-src-elem https://static.cloudflareinsights.com http://localhost:3001/cdn-cgi/scripts/ https://*.googletagmanager.com 'nonce' http://localhost:3001/_nuxt/;
+base-uri 'none'; default-src 'none'; connect-src https://cloudflareinsights.com https://*.analytics.google.com https://*.google-analytics.com https://*.googletagmanager.com 'self'; form-action 'none'; frame-ancestors 'none'; img-src https://*.google-analytics.com https://*.googletagmanager.com 'self' data:; manifest-src http://localhost:3001/site.webmanifest 'self'; style-src 'unsafe-inline' 'self'; report-to csp-endpoint; report-uri https://o4507259039973376.ingest.de.sentry.io/api/4507260561653840/security/?sentry_key=1e53178c1dba9b39147de4a21853a3e3; script-src-elem https://static.cloudflareinsights.com http://localhost:3001/cdn-cgi/scripts/ https://*.googletagmanager.com https://cdnjs.cloudflare.com/polyfill/v3/polyfill.min.js 'nonce' http://localhost:3001/_nuxt/;

tests/e2e/utils/tests.ts

@@ -24,29 +24,29 @@ export const testMetadata = async ({
         { key: 'lang', value: 'en' },
       ],
     },
-    // {
-    //   tag: 'link',
-    //   attributes: [
-    //     {
-    //       key: 'data-testid',
-    //       value: 'polyfill-preload',
-    //     },
-    //     { key: 'rel', value: 'preload' },
-    //     {
-    //       key: 'href',
-    //       value:
-    //         'https://polyfill.io/v3/polyfill.min.js?features=Promise&flags=gated',
-    //     },
-    //     {
-    //       key: 'crossorigin',
-    //       value: 'anonymous',
-    //     },
-    //     {
-    //       key: 'as',
-    //       value: 'script',
-    //     },
-    //   ],
-    // },
+    {
+      tag: 'link',
+      attributes: [
+        {
+          key: 'data-testid',
+          value: 'polyfill-preload',
+        },
+        { key: 'rel', value: 'preload' },
+        {
+          key: 'href',
+          value:
+            'https://cdnjs.cloudflare.com/polyfill/v3/polyfill.min.js?features=Promise&flags=gated',
+        },
+        {
+          key: 'crossorigin',
+          value: 'anonymous',
+        },
+        {
+          key: 'as',
+          value: 'script',
+        },
+      ],
+    },
     {
       tag: 'meta',
       attributes: [