issues
search
april
/
laboratory
Because good website security shouldn't only be available to mad scientists!
https://addons.mozilla.org/en-US/firefox/addon/laboratory-by-mozilla/
Mozilla Public License 2.0
172
stars
13
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
script-src missing (Firefox 112)
#53
DanielRuf
opened
1 year ago
3
Bump json5, babel-loader, copy-webpack-plugin, tsconfig-paths, webpack and webpack-cli
#52
dependabot[bot]
opened
1 year ago
0
Bump qs from 6.5.2 to 6.5.3
#51
dependabot[bot]
opened
1 year ago
0
Bump decode-uri-component from 0.2.0 to 0.2.2
#50
dependabot[bot]
opened
1 year ago
0
Bump loader-utils from 1.1.0 to 1.4.2
#49
dependabot[bot]
opened
1 year ago
0
Bump loader-utils from 1.1.0 to 1.4.1
#48
dependabot[bot]
closed
1 year ago
1
Bump jszip from 2.6.1 to 2.7.0
#47
dependabot[bot]
opened
2 years ago
0
Bump terser from 4.8.0 to 4.8.1
#46
dependabot[bot]
opened
2 years ago
0
Bump moment from 2.29.1 to 2.29.4
#45
dependabot[bot]
opened
2 years ago
0
Bump moment from 2.29.1 to 2.29.2
#44
dependabot[bot]
closed
2 years ago
1
Bump nanoid from 3.1.20 to 3.2.0
#43
dependabot[bot]
opened
2 years ago
0
I do not understand
#42
U-Go-7
opened
2 years ago
1
Bump path-parse from 1.0.6 to 1.0.7
#41
dependabot[bot]
opened
3 years ago
0
Bump normalize-url from 4.5.0 to 4.5.1
#40
dependabot[bot]
opened
3 years ago
0
Bump browserslist from 4.16.1 to 4.16.6
#39
dependabot[bot]
opened
3 years ago
0
Bump hosted-git-info from 2.8.8 to 2.8.9
#38
dependabot[bot]
opened
3 years ago
0
Bump lodash from 4.17.20 to 4.17.21
#37
dependabot[bot]
opened
3 years ago
0
Bump y18n from 4.0.0 to 4.0.1
#36
dependabot[bot]
opened
3 years ago
0
Bump elliptic from 6.5.3 to 6.5.4
#35
dependabot[bot]
opened
3 years ago
0
Bump ini from 1.3.5 to 1.3.7
#34
dependabot[bot]
closed
3 years ago
1
Adding support for frame-ancestors
#33
JavanXD
opened
3 years ago
0
Addon doesn't work on private window even it is allowed
#32
lfluvisotto
closed
3 years ago
0
Bump yargs-parser from 13.1.1 to 13.1.2
#31
dependabot[bot]
closed
3 years ago
1
Bump elliptic from 6.5.2 to 6.5.3
#30
dependabot[bot]
closed
3 years ago
1
Bump lodash from 4.17.15 to 4.17.19
#29
dependabot[bot]
closed
3 years ago
1
CSP policy is to long to display
#28
churchthecat
opened
4 years ago
0
Data or pictures from Blob
#27
verathom
opened
4 years ago
0
Bump jquery from 3.4.1 to 3.5.0
#26
dependabot[bot]
closed
3 years ago
1
Bump acorn from 6.4.0 to 6.4.1
#25
dependabot[bot]
closed
3 years ago
1
Latest version is not recording CSP policies at all
#24
injcristianrojas
opened
4 years ago
8
Add upgrade-insecure-requests directive in generated policy
#23
Yamakaky
opened
5 years ago
0
Include directives without default-src fallback
#22
Yamakaky
opened
5 years ago
0
Block unsafe-eval permanent on all sites
#21
Celuni
opened
5 years ago
2
Generated CSP does not include redirected domains
#20
edmorley
closed
7 months ago
5
moz-extension URLs keep creeping in
#19
april
closed
5 years ago
0
generated CSP fails to include fonts on https://logbot.info/
#18
globau
closed
5 years ago
7
Using generated CSP breaks page (inline script-src/style-src)
#17
edmorley
closed
5 years ago
8
Enforcing recorded CSP breaks page
#16
TotallyInformation
closed
6 years ago
3
Weird moz-extension origin in the generated connect-src policy
#15
stof
closed
6 years ago
8
Firefox for Android 57.0.4 (Firefox Quantum) not compatible
#14
davidhedlund
closed
5 years ago
14
Add hashes to script-src configuration
#13
bonanza123
opened
6 years ago
3
Add ability to allow users to input custom CSP
#12
april
closed
7 years ago
0
Manual enforcement of CSP policy
#11
april
closed
7 years ago
0
Only show pulldowns for configuration if they exist
#10
april
closed
7 years ago
0
Remove caching for window if Laboratory is loaded to prevent CSP caching
#9
april
closed
7 years ago
0
Improve discoverability of addon
#8
edmorley
closed
6 years ago
3
Add support for child-src, worker-src and manifest-src
#7
edmorley
closed
5 years ago
12
Suggested Content-Security-Policy value breaks site
#6
edmorley
closed
7 years ago
10
Overridden CSP headers are cached by the browser
#5
edmorley
closed
7 years ago
7
Add the ability to apply a CSP
#4
april
closed
7 years ago
1
Next