From f8d69901e445fb3a0b218045d14290024a31c4dc Mon Sep 17 00:00:00 2001
From: SukkaW <isukkaw@gmail.com>
Date: Thu, 10 Apr 2025 00:14:49 +0800
Subject: [PATCH] Update CDN Hosts & Whitelist `surge.sh`

---
 Build/constants/phishing-score-source.ts | 3 ++-
 Source/domainset/cdn.conf                | 1 +
 2 files changed, 3 insertions(+), 1 deletion(-)

diff --git a/Build/constants/phishing-score-source.ts b/Build/constants/phishing-score-source.ts
index d912a772..6ed85163 100644
--- a/Build/constants/phishing-score-source.ts
+++ b/Build/constants/phishing-score-source.ts
@@ -40,7 +40,8 @@ export const WHITELIST_MAIN_DOMAINS = new Set([
   'wordpress.com',
   'cloud.microsoft', // actually owned by Microsoft
   'windows.net', // Microsoft refuses to add web.core.windows.net to the Public Suffix List
-  'myqcloud.com' // curben phishing-filter contains many entries
+  'myqcloud.com', // curben phishing-filter contains many entries
+  'surge.sh' // caused by phishing-filter, also no public suffix
 ]);
 
 export const leathalKeywords = createKeywordFilter([
diff --git a/Source/domainset/cdn.conf b/Source/domainset/cdn.conf
index 2d52e1b7..149d6cf5 100644
--- a/Source/domainset/cdn.conf
+++ b/Source/domainset/cdn.conf
@@ -577,6 +577,7 @@ filestore.community.support.microsoft.com
 .msftauthimages.net
 .sfbassets.com
 .sway-cdn.com
+cmtycdn.powerpages.microsoft.com
 # Microsoft CSP Violation Report
 csp.microsoft.com
 # uses Azure Blob Storage