ae259436702e0ac87bb3390ec43864e027f36aaf
galt
  Fri Aug 11 13:14:28 2023 -0700
increasing size of temp string by 4 so it does not overflow.

diff --git src/lib/htmshell.c src/lib/htmshell.c
index f6b389a..2614cc4 100644
--- src/lib/htmshell.c
+++ src/lib/htmshell.c
@@ -1062,31 +1062,31 @@
 // used by hgGene for modbaseimages in hg/hgc/lowelab.c hg/protein/lib/domains.c hg/hgGene/domains.c
 dyStringAppend(policy, " modbase.compbio.ucsf.edu");  
 dyStringAppend(policy, " hgwdev.gi.ucsc.edu"); // used by visiGene
 dyStringAppend(policy, " genome.ucsc.edu"); // used by visiGene
 dyStringAppend(policy, " code.jquery.com");          // used by hgIntegrator
 dyStringAppend(policy, " www.google-analytics.com"); // used by google analytics
 dyStringAppend(policy, " stats.g.doubleclick.net"); // used by google analytics
 dyStringAppend(policy, ";");
 */
 return dyStringCannibalize(&policy);
 }
 
 char *getCspMetaString(char *policy)
 /* get the policy string as an html header meta tag */
 {
-char meta[1024];
+char meta[4096];
 safef(meta, sizeof meta, "<meta http-equiv='Content-Security-Policy' content=\"%s\">\n", policy); 
 // use double quotes around policy because it contains single-quoted values.
 return cloneString(meta);
 }
 
 char *getCspMetaResponseHeader(char *policy)
 /* get the policy string as an http response header */
 {
 char response[4096];
 safef(response, sizeof response, "Content-Security-Policy: %s\n", policy); 
 return cloneString(response);
 }
 
 char *getCspMetaHeader()
 /* return meta CSP header string */