search

google / csp-evaluator

https://csp-evaluator.withgoogle.com
Apache License 2.0
327 stars 46 forks source link

prefetch-src is deprecated and isn't reported on #69

Open Rockerby opened 1 week ago

Rockerby commented 1 week ago

As mentioned in https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/prefetch-src the prefetch-src directive is now deprecated and should be flagged.

A new check should be added to address this.