​@Celine_ ​@ksn THIS IS URGENT!

Update:

1. The websites started working but there is still some CSP, and CORS issues. 
2. After deep analysis I have figured it was due to some changes within the environment of FIGMA MAKE which are out of my reach

Hi ​@Imtiyaz_Ahmed - glad to hear things are running (albeit with some issues still), but have asked our engineering team to review your post and look into this.

What changes did you notice that are not within your ability to reach?

Apologies, but I can’t guarantee a timeline of response. I will update you as soon as I am able.

Yeah it worked but againt the same thing happened later on for 15 minutes. 

I didn’t get to attend the issue immediately because of some other work though I found that the core issue was the same. Based on the console error received, the problems were “updated CORS and CSP Policies”

After researching these, I found out that CSP Headers are established in the hosting servers which currently are in access to FIGMA (wherever FIGMA MAKE is hosted) Its not something that I can access. Though I managed to fix the CORS issues in the code, the CSP issues stayed and were the main factors to my site going down.

According to Chatgpt and Claude, CSP errors occur when some changes are reflected on the server or environment i.e FIGMA SERVERS

Also no rush on the response. I am committed to making Figma and Figma Make better. They are my livelyhood and I love figma. Make enabled me to do so many things and hence I would always prefer staying active in terms of making it better

Hey ​@Imtiyaz_Ahmed — Tom here jumping in for ​@ksn to help keep things moving. Thank you for the added detail; it’s really useful for our team as we look into what’s happening on your end.

We’ve connected with our engineering team, and having access to the file where this is occurring will really help us take a closer look. I just sent an email your way with next steps — when you have a moment, please check your inbox for ticket number: 1614596.

Again, we appreciate you flagging this so thoughtfully, and your commitment to making Figma and Make better. We’ll stay with you as we work toward a clear answer.

I’m having similar issues with my Make prototype. Was working fine today until about an hour ago (~ 1:20pm MST). Now I’m getting `GET https://agdpvthokaitlnocubau.supabase.co/functions/v1/make-server-53da9eb3/catalog/full net::ERR_CERT_AUTHORITY_INVALID` followed by `TypeError: Failed to fetch`

I have the same problem.

I have azurecontainerapps from which I get data via curl location.

But yesterday, the data stopped coming through and I got the error message: ‘Unfortunately, I cannot make external HTTP requests to the Apicurio API directly. I don't have a tool to perform curl or fetch to external services The problem is that a direct request in the browser works, but fetch from JavaScript gets a 403. This is a classic problem with headers or CORS preflight..’

Everything was fine yesterday.

Hi ​@Dustin_Kemper and ​@Lana Space — thank you both for adding your experience here. Your details help us understand the scope of what’s happening.

Are you still seeing the same errors on your end? If the issue is ongoing, our engineering team is actively reviewing similar reports, and we’d like to take a closer look at the specific files tied to the published domains you mentioned. If you’re open to it, let me know — our Technical Quality team can collaborate with you to investigate what’s driving the behavior.

Once I hear back, I’ll follow up with next steps for securely sharing file access.

Thanks for staying engaged as we work through this together.