Skip to content
This repository was archived by the owner on Nov 16, 2023. It is now read-only.

Implemented a simple content security policy using <meta> tag.#145

Open
redox-alpha wants to merge 1 commit intomicrosoft:masterfrom
redox-alpha:master
Open

Implemented a simple content security policy using <meta> tag.#145
redox-alpha wants to merge 1 commit intomicrosoft:masterfrom
redox-alpha:master

Conversation

@redox-alpha
Copy link

@redox-alpha redox-alpha commented Jul 31, 2018

Implemented a content security policy using tag, which
only permits queries to the GitHub api. In addition, two of
the inlined javascipt snippets have been moved to external
files. Images can only be loaded from Microsoft's CDN.

Implemented a simple content security policy using <meta> tag.
3351842 
Implemented a content security policy using <meta> tag, which
only permits queries to the GitHub api. In addition, two of
the inlined javascipt snippets have been moved to external
files. Images can only be loaded from Microsoft's CDN.
@msftclas
Copy link

msftclas commented Jul 31, 2018
edited
Loading

CLA assistant check
All CLA requirements met.

@redox-alpha
Copy link
Author

redox-alpha commented Jul 31, 2018

That nonce should be a hash, but in this particular project it's probably better not to
force other contributors recalculate it for every edit. Ultimately the functionality should
be placed in an external script.

@mamuso mamuso requested a review from prichodko October 2, 2018 00:52
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

@prichodko prichodko Awaiting requested review from prichodko

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@redox-alpha @msftclas