Baroshem · Baroshem · Apr 3, 2024 · Mar 6, 2024 · Mar 9, 2024 · Mar 9, 2024
diff --git a/docs/content/1.documentation/5.advanced/2.faq.md b/docs/content/1.documentation/5.advanced/2.faq.md
@@ -376,3 +376,26 @@ Alternatively, you can use the `external` attribute on `NuxtLink` to set the nav
 ::alert{type="info"}
 ℹ Read more about it [here](https://github.com/Baroshem/nuxt-security/issues/228).
 ::
+
+### Running app with `--host` flag
+
+If you want to expose your app in local network to test it by using other devices you can do so by adding the following configuration:
+
+```ts
+security: {
+    headers: {
+      crossOriginEmbedderPolicy: process.env.NODE_ENV === 'development' ? 'unsafe-none' : 'require-corp', //https://github.com/Baroshem/nuxt-security/issues/101
+      strictTransportSecurity: false,
+      contentSecurityPolicy: {
+        "upgrade-insecure-requests": process.env.NODE_ENV === 'development' ? false : true // USE ONLY IN DEV MODE
+      }
+    },
+    corsHandler: {
+      origin:'*'
+    }
+  }
+```
+
+::alert{type="info"}
+ℹ Read more about it [here](https://github.com/Baroshem/nuxt-security/issues/397).
+::
diff --git a/package.json b/package.json
@@ -51,25 +51,25 @@
   },
   "packageManager": "yarn@1.22.19",
   "dependencies": {
-    "@nuxt/kit": "^3.8.0",
+    "@nuxt/kit": "^3.10.3",
     "basic-auth": "^2.0.1",
     "cheerio": "^1.0.0-rc.12",
     "defu": "^6.1.1",
     "nuxt-csurf": "^1.3.1",
     "pathe": "^1.0.0",
-    "unplugin-remove": "^0.1.7",
+    "unplugin-remove": "^1.0.0",
     "xss": "^1.0.14"
   },
   "devDependencies": {
     "@nuxt/eslint-config": "^0.2.0",
-    "@nuxt/module-builder": "^0.5.2",
-    "@nuxt/schema": "^3.8.0",
-    "@nuxt/test-utils": "^3.8.0",
+    "@nuxt/module-builder": "^0.5.5",
+    "@nuxt/schema": "^3.10.3",
+    "@nuxt/test-utils": "^3.11.0",
     "@types/node": "^18.18.1",
     "eslint": "^8.50.0",
-    "nuxt": "^3.8.0",
+    "nuxt": "^3.10.3",
     "typescript": "^5.2.2",
-    "vitest": "^1.0.4"
+    "vitest": "^1.3.1"
   },
   "stackblitz": {
     "installDependencies": false,

diff --git a/src/runtime/nitro/plugins/03-subresourceIntegrity.ts b/src/runtime/nitro/plugins/03-subresourceIntegrity.ts
@@ -19,10 +19,11 @@ export default defineNitroPlugin((nitroApp) => {
     //
     // - Conversely, if we are in a standalone SSR server pre-built by nuxi build
     //   Then we don't have a .nuxt build directory anymore
-    //   But we did save the /integrity directory into the server assets
+    //   But we did save the /integrity directory into the server assets    
     const prerendering = isPrerendering(event)
-    const storageBase = prerendering ? 'build' : 'assets'
-    const sriHashes: Record<string, string> = await useStorage(storageBase).getItem('integrity:sriHashes.json') || {}
+    const storageBase = prerendering ? 'build' : 'assets'   
+    const sriHashesRaw = await useStorage(storageBase).getItemRaw<Uint8Array>('integrity:sriHashes.json')
+    const sriHashes: Record<string, string> = sriHashesRaw ? JSON.parse(new TextDecoder().decode(sriHashesRaw)) : {}
 
     // Scan all relevant sections of the NuxtRenderHtmlContext
     // Note: integrity can only be set on scripts and on links with rel preload, modulepreload and stylesheet