-
### Description
The problem I'm facing seems to be related to the Content Security Policy (CSP) and even though I've installed the library, it still sends requests and I get a CSP error.
### Provi…
-
### Describe the problem
In our application we have to comply to strict CSP policy requirements. We add nonce tag to all our inline styles. We were using this package all the time and did not have …
-
### Preconditions and environment
- Magento version: 2.4.7
- Community version
- Php version 8.3
### Steps to reproduce
I'am currently managing a Magento 2.4.7 instance on an **Apache server**, a…
-
Problem with setting CSP script-src.
-
There is a code in the library
```js
try {
new Function('')
} catch(error) {
// if eval variants are not supported, do not create inline object readers ever
inlineObjectReadThreshold = Inf…
-
### Describe the problem that you experienced
Hello Angular Community,
I am working on implementing strict CSP (Content Security Policy) remediation in my Angular 16 application. Our server sends …
-
![problem](https://user-images.githubusercontent.com/58025460/84566787-9bd1f680-ad7c-11ea-8818-65c00c174cc8.png)
Hi! I try to install the csp-evaluator .
I have java 11 and ubuntu18
When i try …
-
Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. The code is exp…
-
### Problem Statement
Sentry currently allows filtering CSP reports by specifying wildcard strings in "Additional ignored sources." This filters out CSP reports where the string matches `blocked_uri`…
-
When used against a website on which CSP forbid style-src (inline styles), the UI of RGAA checker is not shown properly.
Site example: https://zigazou.dev
```
.l-extension,:root{--primary-color…