issues
search
w3c
/
webappsec-csp
WebAppSec Content Security Policy
https://w3c.github.io/webappsec-csp/
Other
207
stars
78
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Normative references to discontinued specs in Content Security Policy Level 3
#629
dontcallmedom-bot
closed
10 months ago
0
CSP:EE does not support Trusted Types CSP directives
#628
tosmolka
opened
10 months ago
4
Allow 'strict-dynamic' scripts to inject styles
#625
vejja
opened
11 months ago
3
frame-src using the fetch instead of the navigational check - can end up checking the wrong policies
#624
antosart
opened
11 months ago
0
Allow `script-src 'unsafe-hashes'` for `eval()` and `new Function`
#623
nicolo-ribaudo
opened
11 months ago
8
Remove RECOMMENDATION to not send multiple CSP headers
#622
JannisBush
closed
1 year ago
2
[editorial] Make algorithm headers clickable
#621
antosart
opened
1 year ago
2
CSP not working for certain hostnames
#620
enexusde
closed
8 months ago
18
[editorial] Add missing semicolons in example CSP
#619
antosart
closed
1 year ago
0
Algorithms should be <dfn> in prose instead of linked to headers
#618
johnathan79717
opened
1 year ago
6
Example 26 syntax error - missing 2 semicolons
#617
AlbertWiersch
closed
1 year ago
0
[editorial] Fix typo
#616
antosart
closed
1 year ago
0
Typo in 8.4 Allowing external JavaScript via hashes
#615
mauke
closed
1 year ago
1
[editorial] Change fallback effective directive to connect-src
#614
antosart
closed
1 year ago
1
[editorial] Fix reference to url
#613
antosart
closed
1 year ago
0
Reference the strict-dynamic issue for inline scripts
#612
evilpie
closed
1 year ago
1
Add `"json"` destination for `"connect-src"`
#611
nicolo-ribaudo
closed
11 months ago
8
CSP: Embedded Enforcement Links for issue 16 and 17 are dead
#610
JannisBush
opened
1 year ago
0
Behavior of `worker-src 'strict-dynamic'`
#609
evilpie
opened
1 year ago
8
Remove WPTs for spec-removed `navigate-to` directive
#608
CanadaHonk
opened
1 year ago
4
Export DFNs used in Permissions-Policy
#607
arichiv
closed
1 year ago
1
[Editorial] Fix link to published CSP 2
#606
bwbroersma
closed
1 year ago
1
[Editorial] Fix link to published CSP 2 in README.md
#605
bwbroersma
closed
1 year ago
0
Export DFNs used in Permissions-Policy
#604
arichiv
closed
1 year ago
0
GIAO DICH. NHAN. TIEN CHUYEN? TIEN TREN KHAP' THE' GIOI'
#603
0924249460
closed
1 year ago
0
[editorial] Fix reference to navigable
#602
antosart
closed
1 year ago
2
[editorial] Remove backticks around null
#601
antosart
closed
1 year ago
0
[editorial] Add backticks around null
#600
antosart
closed
1 year ago
2
[editorial] Drop parentheses around algorithm variables
#599
antosart
closed
1 year ago
2
Algorithm variables should not be in parenthesis
#598
annevk
closed
1 year ago
0
Fix issue with host-matching and non-ascii hosts
#597
arichiv
closed
1 year ago
3
Revise port matching logic
#596
arichiv
closed
1 year ago
4
[Editorial] Fix link to prefetch and preconnect in html
#595
antosart
closed
1 year ago
0
Broken references in Content Security Policy Level 3
#594
dontcallmedom-bot
closed
1 year ago
1
Specify the type of empty strings are
#593
arichiv
closed
1 year ago
4
host-char mismatches with the URL Standard
#592
annevk
opened
1 year ago
7
port-part matches issues
#591
annevk
closed
1 year ago
2
host-part match issues
#590
annevk
closed
1 year ago
2
how do i run my computer the way i want
#589
Vargason
closed
1 year ago
1
Fix link text for "run CSP initialization for a global object"
#588
jakearchibald
closed
1 year ago
0
Logic issue with resource hint check with multiple conflicting policies
#587
noamr
opened
1 year ago
3
Fix references and fix build
#586
antosart
closed
1 year ago
0
Fix return value of resource hint check
#585
antosart
closed
1 year ago
0
unique app id in reported violation object
#584
telelvis
closed
1 year ago
3
Fix HTML link-rel links
#583
noamr
closed
1 year ago
0
Use "least restrictive" directive instead of `prefetch-src`
#582
noamr
closed
1 year ago
8
Remove initialization hook
#581
antosart
opened
1 year ago
0
Fix references to html after navigation and session history rewrite
#580
antosart
closed
1 year ago
2
Should we replace browsing contexts with navigables?
#579
antosart
closed
1 year ago
2
Fix for each iterations referring to infra
#578
antosart
closed
1 year ago
2
Previous
Next