april laboratory issues

april / laboratory

Because good website security shouldn't only be available to mad scientists!

https://addons.mozilla.org/en-US/firefox/addon/laboratory-by-mozilla/

Mozilla Public License 2.0

172 stars 13 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

script-src missing (Firefox 112)

#53 DanielRuf opened 1 year ago
3
Bump json5, babel-loader, copy-webpack-plugin, tsconfig-paths, webpack and webpack-cli

#52 dependabot[bot] opened 1 year ago
0
Bump qs from 6.5.2 to 6.5.3

#51 dependabot[bot] opened 1 year ago
0
Bump decode-uri-component from 0.2.0 to 0.2.2

#50 dependabot[bot] opened 1 year ago
0
Bump loader-utils from 1.1.0 to 1.4.2

#49 dependabot[bot] opened 1 year ago
0
Bump loader-utils from 1.1.0 to 1.4.1

#48 dependabot[bot] closed 1 year ago
1
Bump jszip from 2.6.1 to 2.7.0

#47 dependabot[bot] opened 2 years ago
0
Bump terser from 4.8.0 to 4.8.1

#46 dependabot[bot] opened 2 years ago
0
Bump moment from 2.29.1 to 2.29.4

#45 dependabot[bot] opened 2 years ago
0
Bump moment from 2.29.1 to 2.29.2

#44 dependabot[bot] closed 2 years ago
1
Bump nanoid from 3.1.20 to 3.2.0

#43 dependabot[bot] opened 2 years ago
0
I do not understand

#42 U-Go-7 opened 2 years ago
1
Bump path-parse from 1.0.6 to 1.0.7

#41 dependabot[bot] opened 3 years ago
0
Bump normalize-url from 4.5.0 to 4.5.1

#40 dependabot[bot] opened 3 years ago
0
Bump browserslist from 4.16.1 to 4.16.6

#39 dependabot[bot] opened 3 years ago
0
Bump hosted-git-info from 2.8.8 to 2.8.9

#38 dependabot[bot] opened 3 years ago
0
Bump lodash from 4.17.20 to 4.17.21

#37 dependabot[bot] opened 3 years ago
0
Bump y18n from 4.0.0 to 4.0.1

#36 dependabot[bot] opened 3 years ago
0
Bump elliptic from 6.5.3 to 6.5.4

#35 dependabot[bot] opened 3 years ago
0
Bump ini from 1.3.5 to 1.3.7

#34 dependabot[bot] closed 3 years ago
1
Adding support for frame-ancestors

#33 JavanXD opened 3 years ago
0
Addon doesn't work on private window even it is allowed

#32 lfluvisotto closed 3 years ago
0
Bump yargs-parser from 13.1.1 to 13.1.2

#31 dependabot[bot] closed 3 years ago
1
Bump elliptic from 6.5.2 to 6.5.3

#30 dependabot[bot] closed 3 years ago
1
Bump lodash from 4.17.15 to 4.17.19

#29 dependabot[bot] closed 3 years ago
1
CSP policy is to long to display

#28 churchthecat opened 4 years ago
0
Data or pictures from Blob

#27 verathom opened 4 years ago
0
Bump jquery from 3.4.1 to 3.5.0

#26 dependabot[bot] closed 3 years ago
1
Bump acorn from 6.4.0 to 6.4.1

#25 dependabot[bot] closed 3 years ago
1
Latest version is not recording CSP policies at all

#24 injcristianrojas opened 4 years ago
8
Add upgrade-insecure-requests directive in generated policy

#23 Yamakaky opened 5 years ago
0
Include directives without default-src fallback

#22 Yamakaky opened 5 years ago
0
Block unsafe-eval permanent on all sites

#21 Celuni opened 5 years ago
2
Generated CSP does not include redirected domains

#20 edmorley closed 7 months ago
5
moz-extension URLs keep creeping in

#19 april closed 5 years ago
0
generated CSP fails to include fonts on https://logbot.info/

#18 globau closed 5 years ago
7
Using generated CSP breaks page (inline script-src/style-src)

#17 edmorley closed 5 years ago
8
Enforcing recorded CSP breaks page

#16 TotallyInformation closed 6 years ago
3
Weird moz-extension origin in the generated connect-src policy

#15 stof closed 6 years ago
8
Firefox for Android 57.0.4 (Firefox Quantum) not compatible

#14 davidhedlund closed 5 years ago
14
Add hashes to script-src configuration

#13 bonanza123 opened 6 years ago
3
Add ability to allow users to input custom CSP

#12 april closed 7 years ago
0
Manual enforcement of CSP policy

#11 april closed 7 years ago
0
Only show pulldowns for configuration if they exist

#10 april closed 7 years ago
0
Remove caching for window if Laboratory is loaded to prevent CSP caching

#9 april closed 7 years ago
0
Improve discoverability of addon

#8 edmorley closed 6 years ago
3
Add support for child-src, worker-src and manifest-src

#7 edmorley closed 5 years ago
12
Suggested Content-Security-Policy value breaks site

#6 edmorley closed 7 years ago
10
Overridden CSP headers are cached by the browser

#5 edmorley closed 7 years ago
7
Add the ability to apply a CSP

#4 april closed 7 years ago
1