Closed kumarrishav closed 6 years ago
If app is using default-src for fall back for script-src/style-src, then nonce won't get enforced in header even if scriptNonce/styleNonce is true as these directives are no available in csp policy.
This is great, @kumarrishav , can you just add an entry to the CHANGELOG?
@linkRace done.
👍
If app is using default-src for fall back for script-src/style-src, then nonce won't get enforced in header even if scriptNonce/styleNonce is true as these directives are no available in csp policy.