-
### What happened?
Even configured in grafana.ini the CSP policy, that is not working.
Tried with minimal setting either, no luck.
content_security_policy = true
content_security_policy_template…
-
Since a week, I have been receiving below error when I'm trying to use my extension which was working fine. I did not make any change in the code.
>Refused to load the script 'chrome-extension://2a…
-
protobuf.js version: 6.10.1
when web open csp, protobuf.js will block with unsafe-eval.
I find problem at codegen
1. return Function.apply(null, scopeParams).apply(null, scopeValues);
2. return Fu…
-
### What type of issue is this?
Linter issue
### What is the issue?
If a feature has an `mdn_url` that points to an anchor of an MDN page, and that page is removed and redirected to another p…
-
## 🐛 Bug Report
Trying to trigger a click (and maybe other events too) on a website that has some level of Content-Security-Policy restricting 'unsafe-eval', the test cannot be run due eval() calle…
-
STR: `./wpt run --debug-test webkitgtk_minibrowser content-security-policy/navigation/javascript-url-navigation-evaluated-to-string-inherits-csp.html`
Log:
```
./wpt run --debug-test webkitgtk_mi…
-
Right now using my security policy of using script-src 'self I'm getting a refusal to run html2pdf.
By adding script src 'self' 'unsafe-eval' then it works just fine. That isn't an option for me thou…
-
We should consider setting a default `frame-ancestors` directive for the Content Security Policy. The [`frame-ancestors`](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Pol…
-
Right now there's no meta tags whatsoever. I'm going to bring some of the meta tag information in dev into this application
-
Is it possible for there to be documentation on exactly what the minimal CSP is if you use `docsy` as your Hugo theme? It's a requirement of the [Core Infrastructure Initative's Best Practices](https:…