-
According to the documentation, to support the CSP header, a nonce needs to be added to the style-src directive (https://mui.com/material-ui/guides/content-security-policy/). However, a number of Mate…
-
**Describe the bug; what happened?**
Enabling the `BackgroundBlurEffect` (from `@azure/communication-calling-effects`) requires you to have `unsafe-eval` added to the Content Security Policy header. …
-
# Repolinter Report
🤖*This issue was automatically generated by [repolinter-action](https://github.com/newrelic/repolinter-action), developed by the Open Source and Developer Advocacy team at New Rel…
-
There seems to be a bunch of inline scripts or style rules [such as this](https://github.com/go-gitea/gitea/blob/master/templates/repo/settings/hook_settings.tmpl#L24) that don't play nice with CSP. T…
-
## Prerequisites
- [x] I have searched for similar features requests in both open and closed tickets and cannot find a duplicate.
- [x] The feature is still missing in the latest stable vers…
-
## Steps to Reproduce
1. Create a template app with `flutter create bug`.
2. `flutter build web --csp`
3. Run built app on a server with SSL/TLS configured
## Expected results:
App t…
-
There are also problems in TYPO3 v12.4 with the Content Security Policy in Front- and Backend.
-
To run Giscus while using a CSP I need to add `unsafe-eval` for JS and `unsafe-inline` for CSS. The `unsafe` part says it all ;) Is there any way to remove these requirements, in sense of changing the…
-
Ok so i have built an edge function that downloads a video as temporary and then returns it via response like:
```
new Response(mediaResponse.body, {
status: 200,
headers: {
"Content-Type": con…
-
Content Security Policy is a method for websites to inform web browsers of what policies they should apply to downloading/executing/embedding scripts and other resources.
* https://content-security…