Skip to content

Commit 3b6d4fe

Browse files
kotokoto
authored
Fix #221. (#239)
eval(TrustedScript) requires 'unsafe-eval' in script-src. Navigation to javascript: URLs that were passed to CSP requires 'unsafe-inline'.
1 parent 3ecb3a0 commit 3b6d4fe

File tree

2 files changed

+29
-152
lines changed

2 files changed

+29
-152
lines changed

0 commit comments

Comments
 (0)