-
Historically, Wagtail didn't always play well with CSP enabled, but i'm informed by its makers that it _should_ be OK since 2.2.
Worth a try, as it'll boost our HTTPObservatory score
-
I have some Azure subscriptions monitored. And I have only issue with Azure CSP subscription cost receiving. It is in pending status. The error in WebJobBillingData is the following. How to retrieve c…
-
We should audit the [available CSP options](https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP) against our current policy, and identify which, if any, we should consider adding/altering to the ser…
-
DMVC already has middleware for CORS and general Security Headers.
There is also a set of standards around Content Security Policy (CSP), designed to help detect and mitigate certain types of attac…
-
Try to add CSP-Header with variable DRAWIO_CSP_HEADER `frame-ancestors 'self' https://myserver.xyz;`, or `frame-ancestors *;`
but none seems to change anything.
Did somebody have an idea?
Add D…
-
REDAXO: 5.14.2
PHP: 8.1
Browser: Firefox
dump() ist ja ein super praktisches Tool zum debuggen.
Das dump-Fenster wird offenbar über ein JS ``` Sfdump = window.Sfdump ...``` erzeugt.
Die Verw…
-
# CityGuesser | Ian’s CSP Blog
This JavaScript program displays a satellite image of a random city with a population of 30,000 people or larger, and the goal of the game is to guess the city from thi…
-
Hello,
given the fact gtm4wp_get_the_gtm_tag filter is deprecated, we cannot add nonce to gtm4wp scripts and include in website Content Security Policy.
Why is this filter deprecated, do you plan…
-
Question 1: Schema Change
![image](https://github.com/TDWolff/AtlasIndex/assets/142456240/6447f176-12df-4638-81aa-445f456b1da4)
-
@oioki is proposing in https://github.com/getsentry/sentry/pull/47980 to add a minimal CSP implementation for self-hosted. Do we want to collect these from the field?
The [consent](https://github.c…