issues
search
nico3333fr
/
CSP-useful
Collection of scripts, thoughts about CSP (Content Security Policy)
MIT License
487
stars
59
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Explain Google Tag Manager issue
#99
Maxim-Mazurok
opened
2 days ago
0
Got a lot of "effectiveDirective default-src"
#98
dxxbbf
opened
3 months ago
0
connect-src violation for sentry.io, even though allowed
#97
Maxim-Mazurok
closed
3 months ago
1
Blocked URI : properties
#96
Facyla
opened
1 year ago
2
Update not-explained.md
#95
stevendegroote
closed
2 years ago
1
Fix URL for test
#94
borisschapira
closed
2 years ago
1
Moving WTF 'Google audio pronunciation files' from unexplained to exp…
#93
laradevitt
closed
2 years ago
1
Add an answer for nonexistent first party fonts
#92
RiZKiT
closed
2 years ago
1
What means when violatios reports lack of source-file ?
#91
BruceGitHub
opened
3 years ago
0
Add wtf: first party font request
#90
Seirdy
closed
3 years ago
1
Update bookmarklets support on Firefox
#89
ocamon
closed
3 years ago
1
Add useful (free) tools.
#88
shaialon
closed
3 years ago
1
Misleading / confusing comment
#87
DanielRuf
closed
2 years ago
0
Possible Wrong link
#86
security-prince
closed
4 years ago
1
Function break CSP checks
#85
menocomp
closed
4 years ago
2
Additional unexplained wtf
#84
jswart
closed
4 years ago
3
Google font injected
#83
jens-duttke
closed
1 year ago
0
Adding a resource to the reporting section
#82
dylburger
closed
4 years ago
1
Add new wtf
#81
aaronjensen
closed
5 years ago
1
Form-action: data
#80
Sora2455
opened
5 years ago
1
Add ad.smar-t malware
#79
MaceWindu
closed
5 years ago
1
Added connect-src to Vimeo, otherwise it doesn't load
#78
D-32
closed
5 years ago
1
Add another wtf explanation
#77
MaceWindu
closed
5 years ago
0
Explain css injection from vimium
#76
MaceWindu
closed
5 years ago
1
How to make HTML5 <video> compatible with CSP (Google Chrome)?
#75
BigBenJr
opened
5 years ago
9
Explained: Thinkover
#74
Zenexer
closed
5 years ago
1
Explained: blocked-uri = eval
#73
Zenexer
closed
5 years ago
2
Explained: uc.gre
#72
Zenexer
closed
5 years ago
1
Remove misconfigured WTFs
#71
Zenexer
closed
5 years ago
5
Explained: extension schemes
#70
Zenexer
closed
5 years ago
1
Explanation: "blocked-uri": "inline" and similar
#69
Zenexer
opened
5 years ago
0
Undefined index: column-number
#68
boionfire81-zz
opened
5 years ago
8
normalize whitespace, and an add
#67
roycewilliams
closed
5 years ago
1
Explain a WTF: Google Analytics connect-src violation
#66
gapple
closed
5 years ago
1
fptraffic csp explanation
#65
MaceWindu
closed
6 years ago
1
Findizer explanation
#64
MaceWindu
closed
6 years ago
1
CSP violation parser script that uses PDO
#63
D9ping
closed
6 years ago
1
Loop11
#62
eternalmatt
closed
6 years ago
1
Update not-explained.md
#61
micr0lab
closed
6 years ago
1
Added 2 more WTF Samples
#60
fwebdev
closed
6 years ago
1
yet another plugin that doesn't respect CSP
#59
MaceWindu
closed
6 years ago
1
Add blackspider CSP injection explanation
#58
MaceWindu
closed
6 years ago
1
Free games with adware browser extension
#57
StudioMaX
closed
6 years ago
1
Monetizus domains
#56
StudioMaX
closed
6 years ago
1
add one more malware host
#55
MaceWindu
closed
6 years ago
2
add getstencil.com wtf with explanation
#54
MaceWindu
closed
6 years ago
1
Domain list of ad-framework used in browser extensions
#53
StudioMaX
closed
6 years ago
1
Explained one more domain of the "loadingpages" malware, and some unknown violations
#52
StudioMaX
closed
6 years ago
1
ElsewhereGames CSP WTF (friend of GamePhrase)
#51
StudioMaX
closed
6 years ago
1
A few more domains for "loadingpages" malware
#50
StudioMaX
closed
6 years ago
1
Next