-
- Site: [https://rajeshwar.cloud](https://rajeshwar.cloud)
**New Alerts**
- **CSP: Wildcard Directive** [10055] total: 2:
- [https://rajeshwar.cloud/sitemap.xml](https://rajeshwar.cloud/site…
-
Hi Nelmio Team,
I wanted to open a discussion with respect to extending the current CSP module to include support for `trusted-types` and `require-trusted-types-for` headers. Although both Symfony …
-
### Feature request type
Other
### Component name
Snackbar, TimePicker (and other)
### Is your feature request related to a problem?
To be able to run MudBlazor (version 6.0.9) without breaking t…
-
Hello there,
I use HTML5 video element on my website and a strict Content-Security-Policy directive (default-src 'self'). I get this error message in Google Chrome console when I load for the first…
-
Dear Cybele Software,
My name is Daniel Morales, from the IT Security Team of ARHS Spikeseed.
I recently found a functionality in Thinfinity VirtualUI that could allow to a malicious actor to pe…
-
# 💩 Bug Report
## A summary of the bug
Using i18n internationalization will cause secure headers to disappear
## Current behavior
If you have this in your next.config.js:
``` js
i18n: {
d…
-
- Site: [https://alcs-dev-api.apps.silver.devops.gov.bc.ca](https://alcs-dev-api.apps.silver.devops.gov.bc.ca)
**New Alerts**
- **A Server Error response code was returned by the server** [10000…
-
Consider the following testcase:
1) A parent page has a frame-src CSP directive restricting to the same site.
2) The parent page has a subframe that does not have CSP defined at all and contains a…
-
This is my gatsby plugin config:
```
{
resolve: `gatsby-plugin-csp`,
options: {
disableOnDev: true,
reportOnly: false, // Changes header to Content-Security-Pol…
-
It will allow greater versatility and customisation if the `build_policy` function was made to return the `csp` variable before it is changed into `policy_parts` (https://github.com/mozilla/django-csp…