diff --git a/index.bs b/index.bs
index aca382d6f7..fdbb89ad71 100644
--- a/index.bs
+++ b/index.bs
@@ -4412,6 +4412,10 @@ Content-Type: application/reports+json
 
       2.  <a for=set>For each</a> |expression| of |list|:
 
+          1.  If |expression| is the "<a grammar>`'strict-dynamic'`</a>" <a grammar>keyword-source</a>:
+
+              1.  If |type| is "`script`", and |element| is not [=parser-inserted=], return "`Matches`".
+
           1.  If |expression| matches the <a grammar>`hash-source`</a> grammar:
 
               1.  Let |algorithm| be null.
@@ -4448,8 +4452,6 @@ Content-Type: application/reports+json
       they will also apply to event handlers, style attributes and `javascript:`
       navigations.
 
-  ISSUE(w3c/webappsec-csp#426): This should handle `'strict-dynamic'` for dynamically inserted inline scripts.
-
   6.  Return "`Does Not Match`".
 
   <h3 id="directive-algorithms">Directive Algorithms</h3>