Open lfuelling opened 1 year ago
This seems more like an issue with https://github.com/sparksuite/codemirror-spell-checker than EasyMDE.
If it's bothering you though, you can set spellChecker
to false
in the EasyMDE constructor. That will prevent it from trying to download this file from the CDN.
Hi,
Describe the bug EasyMDE seems to use resources loaded using some content delivery networks, which causes CSP errors when using in an application that doesn't use those CDN.
To Reproduce Steps to reproduce the behavior:
localhost
)ce @ easymde-256c9371.js:103 (anonymous) @ easymde-256c9371.js:103 easymde-256c9371.js:40 Refused to connect to 'https://cdn.jsdelivr.net/codemirror.spell-checker/latest/en_US.aff' because it violates the following Content Security Policy directive: "connect-src 'self' https://some.example.com".
(anonymous) @ easymde-256c9371.js:40 ji @ easymde-256c9371.js:12 Fa @ easymde-256c9371.js:18 sl @ easymde-256c9371.js:18 Ke @ easymde-256c9371.js:20 Ke @ easymde-256c9371.js:20 Pf @ easymde-256c9371.js:32 ce.render @ easymde-256c9371.js:103 ce @ easymde-256c9371.js:103 (anonymous) @ easymde-256c9371.js:103 easymde-256c9371.js:40 Refused to connect to 'https://cdn.jsdelivr.net/codemirror.spell-checker/latest/en_US.dic' because it violates the following Content Security Policy directive: "connect-src 'self' https://some.example.com".