-
Hi James,
thank you for this project, It has been the perfect intro into a solid intune deployment for my customers migrating to a cloud-only future.
I noticed, that the policy `Win - OIB - Micr…
-
`eval` is used [here](https://github.com/lxsmnsyc/seroval/blob/822af206c29c36b51cc5e6f24c0883b52bc0aa11/packages/seroval/src/core/tree/index.ts#L47), which unfortunately causes an error in sites which…
-
# 🐞 bug report
### Affected Package
The issue is caused by package @angular/service-worker:9.1.7
### Is this a regression?
Nope, seems to always been there
### Description
Su…
-
### Describe the bug
We have the nonce configured as part of the PrimeVue setup, but there are still many warnings.
They seem to come from a few places as seen in the screenshot.
### Reproducer
…
-
Jan 31
database, with database schema change:
- Show db.Column changes you have made to model/python file in Visual Studio Code
- Show initialization data code in VSCode
- Demo delete…
-
- Site: [https://bscytxzsc3.execute-api.ap-south-1.amazonaws.com](https://bscytxzsc3.execute-api.ap-south-1.amazonaws.com)
**New Alerts**
- **CSP: Wildcard Directive** [10055] total: 1:
- [h…
-
Content security policy is a mechanism in which we can restrict sources of where content is loaded to reduce the attack surface of possible xss and detect it.
I suggest that we only load scripts an…
-
Without a default value for `default-src` certain other directives like `connect-src` will currently fallback to "allow all" (today's default). This can lead to a regression because adding the followi…
-
See https://blog.mozilla.org/addons/2019/12/12/test-the-new-csp-for-content-scripts/?utm_source=newsletter&utm_medium=email&utm_campaign=2019-dec-about-addons
@kirlat i'm assigning this to you beca…
-
The utility bar appears to work with 'strict-dynamic', but I would like to explore simpler cases because not all sites are ready for a nonce setup. Specifically, it looks like the CSS is being written…