搞定设计 网站 CSP 如何绕过？

[long36708]

控制台报错如下： server:vite-monkey-project.user.js:60 Refused to load the script 'http://127.0.0.1:5173/__vite-plugin-monkey.entry.js' because it violates the following Content Security Policy directive: "script-src 'self' at.alicdn.com 'unsafe-eval' 'unsafe-inline' data: blob: .dancf.com .gaoding.com .gaoding.cn .focodesign.com .insmind.com .wx.qq.com hm.baidu.com tongji.baidu.com assetscli.udesk.cn ttxsapp.udesk.cn retcode.alicdn.com www.google-analytics.com www.googletagmanager.com https://quickapp/jssdk.webview.min.js https://apis.google.com https://g.alicdn.com .aliapp.org .alibaba.com .aliyun.com https://webapi.amap.com .amap.com *.smartlook.com". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback.

[lisonge]

https://github.com/lisonge/vite-plugin-monkey?tab=readme-ov-file#csp