search

mcfly-io / generator-mcfly

A Yeoman generator for scaffolding an application using angular, browserify, ionic and famous
323 stars 43 forks source link

The default CSP should have a more permissive script-src directive #235

Closed jskrzypek closed 9 years ago

jskrzypek commented 9 years ago

when we build the CSP we should use this script-src directive:

script-src: * 'unsafe-inline' 'unsafe-eval';