Skip to content
This repository has been archived by the owner on Nov 4, 2024. It is now read-only.

Content Security Policy (CSP) implemented unsafely #461

Open
digitalgregg opened this issue Jan 12, 2022 · 1 comment
Open

Content Security Policy (CSP) implemented unsafely #461

digitalgregg opened this issue Jan 12, 2022 · 1 comment

Comments

@digitalgregg
Copy link

My site using lot inline JS ans CSS. When I'm using unsafe-inline , Mozilla showing (CSP) implemented unsafely. How can keep score on Mozilla using unsafe-inline ?

@carlin-q-scott
Copy link

This article explains your issue pretty thoroughly: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/script-src

Basically you need to stop using inline scripts and styles, or use nonces.

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants