Version 1.0.0 of the plugin shipped with only the default-src policy being set. This works just fine; however, when a report is generated, there is no information about the specific type of violation. If we get more granular and set policy for individual categories of reports, we can category the reports as images, javascript, css, etc. This PR introduces more specific reporting. It also changes how the policy is defined to make it easier for others to define a different report if needed.
Version 1.0.0 of the plugin shipped with only the
default-srcpolicy being set. This works just fine; however, when a report is generated, there is no information about the specific type of violation. If we get more granular and set policy for individual categories of reports, we can category the reports as images, javascript, css, etc. This PR introduces more specific reporting. It also changes how the policy is defined to make it easier for others to define a different report if needed.