-
- Site: [https://poc-map-bakso.hamdan.id](https://poc-map-bakso.hamdan.id)
**New Alerts**
- **Content Security Policy (CSP) Header Not Set** [10038] total: 3:
- [https://poc-map-bakso.hamdan…
-
Capturing that https://www.mapbox.com/mapbox-gl-js/api/#csp-directives should be updated.
The `child-src` directive is recommended, but it is deprecated and yields a warning when used in chrome and…
-
### 描述错误
当对应用有安全性需求的时候,CSP不允许使用unsafe-inline。
在vite5中可以通过配置 html.cspNonce 给页面所有script和style加上Nonce满足CSP的要求。
但naiveUI似乎并不适用,打开页面后控制台报错,且UI库的组件均无法正常使用。
:
> The following directives either allo…
-
- Site: [https://hack23.com](https://hack23.com)
**New Alerts**
- **CSP: Wildcard Directive** [10055] total: 1:
- [https://hack23.com/](https://hack23.com/)
- **CSP: style-src unsafe-inlin…
-
- Site: [https://mtn.com](https://mtn.com)
**New Alerts**
- **Content Security Policy (CSP) Header Not Set** [10038] total: 1:
- [https://mtn.com](https://mtn.com)
- **Sub Resource Integri…
-
I have enabled Content Security Policy (CSP) directives on wagtail admin using django-csp.
CSP is not required for all websites but for some clients is mandatory as part of the security requirements.
…
-
### Describe the Request
I think it would be nice to add at least:
OR
- a more precise docs for CONTENT_SECURITY_POLICY_*
- a doc page for how to setup livepreview for self hosted
because now…
-
Would be great if we can add additional restrictions. Like blocking images from certain domains using the img-src directive from CSP. Or blocking css code using style-src.
Thanks in advance.