search

gchq / CyberChef

The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis
https://gchq.github.io/CyberChef
Apache License 2.0
28.91k stars 3.24k forks source link

Bug report: CyberChef encountered an error while loading. [Firefox 56.0] #1222

Open BlueberryFoxtrot opened 3 years ago

BlueberryFoxtrot commented 3 years ago

The following browser versions are supported:

Google Chrome 50+
Mozilla Firefox 38+

Your user agent is: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:56.0) Gecko/20100101 Firefox/56.0

If your browser is supported, please raise an issue including the following details:

Error: Inline worker is not supported Filename: https://gchq.github.io/CyberChef/assets/main.js Line: 2 Column: 4070430 Error: Error: Inline worker is not supported User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:56.0) Gecko/20100101 Firefox/56.0 CyberChef version: 9.28.0

chriswhite199 commented 1 year ago

I had a similar issue, check your Content-Security-Policy header in the response for the html page, you need a workers-src 'self' block: data: entry if you have explicitly set the CSP header.

For example in nginx:

add_header Content-Security-Policy "default-src 'self' 'unsafe-inline' blob: data:; script-src 'self' 'unsafe-inline' 'unsafe-eval'; workers-src 'self' blob: data:;";