Skip to content

Commit

Permalink
Fix w3c#221.
Browse files Browse the repository at this point in the history 
eval(TrustedScript) requires 'unsafe-eval' in script-src.
Navigation to javascript: URLs that were passed to CSP requires
'unsafe-inline'.
  • Loading branch information
@koto
koto committed Nov 15, 2019
1 parent 3ecb3a0 commit d800753
Show file tree
Hide file tree
Showing 2 changed files with 29 additions and 152 deletions.
Loading

0 comments on commit d800753

Please sign in to comment.