Closed jwhitlock closed 4 days ago
When converting to django-csp 4.x, the 'unsafe-inline' rule was applied to script-src instead of style-src. This is why we're getting new CSP violations on local dev and the dev server.
When converting to django-csp 4.x, the 'unsafe-inline' rule was applied to script-src instead of style-src. This is why we're getting new CSP violations on local dev and the dev server.