search

rubystarashe / nuxt-vuex-localstorage

MIT License
161 stars 18 forks source link

Unsafe Eval #37

Open deen13 opened 3 years ago

deen13 commented 3 years ago

This library uses the eval(...) function at some point which is commonly blocked by the content security policy.

https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/script-src

deen13 commented 3 years ago

https://github.com/rubystarashe/nuxt-vuex-localstorage/blob/d3aad7235068d2f5254fc414b5a3ce23e0210096/plugins/bindStorage/expire.js

dzcpy commented 2 years ago

It should use something like lodash's cloneDeep