Closed reesericci closed 7 months ago
However this incorrectly determines that we don't use unsafe-inline, as shown a little further down the page
Can you check that the CSP errors aren't coming from extensions? Also, if you open up the network tag can you get the specific URLs being blocked
This PR makes the necessary changes to add a decent content security policy (with nonces & unsafe-inline for style attributes unfortunately).