-
- [x] Cloudfront CSP blockers and fixing invalid paths
- [x] Fix issue causing form data not to pass
- [x] FavIcon Not loading
- [ ] [Language Toggle Issue](https://github.com/cds-snc/simplify-priv…
-
Hi, hope everyone is healthy and safe.
I have multiple views which are working with multiple request methods. For some of these views, I'ld like to update/replace/exclude the csp only for the reque…
-
### Describe the bug
Hello and thank you all for making and maintaining Svelte ❤️
This is related to #5215, but that seems to be specifically targeted at the animations API, whereas I am talking…
atjn updated
2 months ago
-
- Site: [https://github.com](https://github.com)
**New Alerts**
- **Absence of Anti-CSRF Tokens** [10202] total: 1:
- [https://github.com/Siddhant02082002/BAckend-Testing](https://github.com…
-
Hello,
I was testing the policy and the product owner notified me that some ressources are not loaded in the browser during the fifth phase that is mentionned in the helper of the plugin
```
Leav…
-
While extending my deep appreciations to the author, I wanted to ask him to rewrite a line of code, as it is getting blocked by the CSP directives even though we use a nonce. The line is the following…
-
```
venture[script] > assume sim = (rowid) ~> {normal(0,1) #dummy:rowid};
[]
venture[script] > predict sim(10)
-0.627003587782
venture[script] > list_directives
35: sim: assume sim = make_csp(qu…
fsaad updated
6 years ago
-
Hi, Is there any plan to add a way to "import" or "load" CSP from an external URL? For instance, a header like:
`Content-Policy-Rules: https://../my/rules`. The response of the URL could be as simple…
-
What is '_humble_' missing?; being reasonable :):
- What HTTP header checks do you miss?.
- What totals do you think should be reported?.
- What results export format do you need and why?.
Let…
-
Using this example CSP:
`content-security-policy: default-src 'none'; base-uri 'none'; frame-ancestors 'self'; script-src 'strict-dynamic' 'nonce-VVz1fXT3a0vl40s51oUfepWP2SS22WWFPA+HKdp5dUE=' https: …