Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

website https://adm.tools/ not working when using extension #503

Closed
skorpions2000 opened this issue Feb 16, 2023 · 2 comments
Closed

website https://adm.tools/ not working when using extension #503

skorpions2000 opened this issue Feb 16, 2023 · 2 comments
Assignees
@nickyc975
Labels
bug Something isn't working

Comments

@skorpions2000
Copy link

describe the bug描述问题

When I use this site adm.tools nothing works for me.
https://adm.tools/

16Refused to load the script '<URL>' because it violates the following Content Security Policy directive: "script-src translate.googleapis.com translate.google.com <URL> <URL> <URL> 'report-sample' 'unsafe-inline'". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback.

adm.tools/:1 Refused to load the script 'https://adm.tools/external_libs/jquery/360/jquery.min.js?v=1675876141' because it violates the following Content Security Policy directive: "script-src translate.googleapis.com translate.google.com www.google.com www.gstatic.com chrome-extension://bocbaocobfecmglnmeaeppambideimao/-attr 'report-sample' 'unsafe-inline'". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback.

adm.tools/:1 Refused to load the script 'https://adm.tools/external_libs/jquery/jquery.address-1.6.min.js?v=1675876141' because it violates the following Content Security Policy directive: "script-src translate.googleapis.com translate.google.com www.google.com www.gstatic.com chrome-extension://bocbaocobfecmglnmeaeppambideimao/-attr 'report-sample' 'unsafe-inline'". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback.

adm.tools/:1 Refused to load the script 'https://adm.tools/js/semantic/admin.min.js?v=1675876142' because it violates the following Content Security Policy directive: "script-src translate.googleapis.com translate.google.com www.google.com www.gstatic.com chrome-extension://bocbaocobfecmglnmeaeppambideimao/-attr 'report-sample' 'unsafe-inline'". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback.

adm.tools/:1 Refused to load the script 'https://adm.tools/external_libs/jquery/jquery.tipsy.js?v=1675876141' because it violates the following Content Security Policy directive: "script-src translate.googleapis.com translate.google.com www.google.com www.gstatic.com chrome-extension://bocbaocobfecmglnmeaeppambideimao/-attr 'report-sample' 'unsafe-inline'". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback.

adm.tools/:1 Refused to load the script 'https://adm.tools/external_libs/jquery/ui-1-11-0/min.js?v=1675955583' because it violates the following Content Security Policy directive: "script-src translate.googleapis.com translate.google.com www.google.com www.gstatic.com chrome-extension://bocbaocobfecmglnmeaeppambideimao/-attr 'report-sample' 'unsafe-inline'". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback.

adm.tools/:1 Refused to load the script 'https://adm.tools/external_libs/jquery/fancybox/jquery.fancybox.min.js?v=1675876141' because it violates the following Content Security Policy directive: "script-src translate.googleapis.com translate.google.com www.google.com www.gstatic.com chrome-extension://bocbaocobfecmglnmeaeppambideimao/-attr 'report-sample' 'unsafe-inline'". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback.

adm.tools/:1 Refused to load the script 'https://adm.tools/js/shared/request.min.js?v=1675876142' because it violates the following Content Security Policy directive: "script-src translate.googleapis.com translate.google.com www.google.com www.gstatic.com chrome-extension://bocbaocobfecmglnmeaeppambideimao/-attr 'report-sample' 'unsafe-inline'". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback.

adm.tools/:1 Refused to load the script 'https://adm.tools/js/shared/global.min.js?v=1675876142' because it violates the following Content Security Policy directive: "script-src translate.googleapis.com translate.google.com www.google.com www.gstatic.com chrome-extension://bocbaocobfecmglnmeaeppambideimao/-attr 'report-sample' 'unsafe-inline'". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback.

adm.tools/:1 Refused to load the script 'https://adm.tools/js/ukraine/hosting.min.js?v=1676364798' because it violates the following Content Security Policy directive: "script-src translate.googleapis.com translate.google.com www.google.com www.gstatic.com chrome-extension://bocbaocobfecmglnmeaeppambideimao/-attr 'report-sample' 'unsafe-inline'". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback.

adm.tools/:1 Refused to load the script 'https://adm.tools/js/orfo/orfo.js?v=1675876142' because it violates the following Content Security Policy directive: "script-src translate.googleapis.com translate.google.com www.google.com www.gstatic.com chrome-extension://bocbaocobfecmglnmeaeppambideimao/-attr 'report-sample' 'unsafe-inline'". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback.

adm.tools/:1 Refused to load the script 'https://adm.tools/external_libs/raven/raven.min.js?v=1675876141' because it violates the following Content Security Policy directive: "script-src translate.googleapis.com translate.google.com www.google.com www.gstatic.com chrome-extension://bocbaocobfecmglnmeaeppambideimao/-attr 'report-sample' 'unsafe-inline'". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback.

adm.tools/:1 Refused to load the script 'https://adm.tools/js/cms/toolbar-user.js?v=1675876142' because it violates the following Content Security Policy directive: "script-src translate.googleapis.com translate.google.com www.google.com www.gstatic.com chrome-extension://bocbaocobfecmglnmeaeppambideimao/-attr 'report-sample' 'unsafe-inline'". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback.

adm.tools/:1 Refused to load the script 'https://adm.tools/external_libs/jquery/sound/ion.sound.min.js?v=1675876141' because it violates the following Content Security Policy directive: "script-src translate.googleapis.com translate.google.com www.google.com www.gstatic.com chrome-extension://bocbaocobfecmglnmeaeppambideimao/-attr 'report-sample' 'unsafe-inline'". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback.

adm.tools/:1 Refused to load the script 'https://adm.tools/js/nodejs/socket.io-4.min.js?v=1675876142' because it violates the following Content Security Policy directive: "script-src translate.googleapis.com translate.google.com www.google.com www.gstatic.com chrome-extension://bocbaocobfecmglnmeaeppambideimao/-attr 'report-sample' 'unsafe-inline'". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback.

adm.tools/:1 Refused to load the script 'https://adm.tools/js/ufo/client.min.js?v=1675876142' because it violates the following Content Security Policy directive: "script-src translate.googleapis.com translate.google.com www.google.com www.gstatic.com chrome-extension://bocbaocobfecmglnmeaeppambideimao/-attr 'report-sample' 'unsafe-inline'". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback.

adm.tools/:1 Refused to load the script 'https://adm.tools/external_libs/jquery-autocomplete/jquery.autocomplete.min.js?v=1675876141' because it violates the following Content Security Policy directive: "script-src translate.googleapis.com translate.google.com www.google.com www.gstatic.com chrome-extension://bocbaocobfecmglnmeaeppambideimao/-attr 'report-sample' 'unsafe-inline'". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback.

(индекс):47 Uncaught ReferenceError: $ is not defined
    at (индекс):47:9
(индекс):104 Uncaught ReferenceError: $ is not defined
    at (индекс):104:3
(индекс):438 Uncaught ReferenceError: $ is not defined
    at (индекс):438:1
(индекс):889 Uncaught ReferenceError: $ is not defined
    at (индекс):889:147
(индекс):926 Uncaught ReferenceError: $ is not defined
    at (индекс):926:1
(индекс):69 Uncaught ReferenceError: $ is not defined
    at (индекс):69:4

describe the problem you encountered 请在此详细描述你遇到的问题,例如问题的表现形式,对你造成了那些影响等

testable address 出现问题的网址

leave us a testable address(optional) 如果问题仅在某些特定的网页上出现,请在此给出网页链接

steps to reproduce复现步骤

describe steps to reproduce 请在此给出问题的复现步骤

issue screenshot 问题截图

image

可以的话,最好再给出出现问题时的截图(注意隐藏你的个人信息)

environment 使用环境

tell us your environment info,e.g.: 在这里给出你的使用环境,例如: windows

browser name 浏览器类型 [e.g. chrome, firefox] Opera

browser version 浏览器版本 [e.g. 22] LVL4 (core: 94.0.4606.107)

extension version 插件版本 [e.g. 2.0.0] 2.4.0

other information 其他信息

other information(optional) 如果还有其他相关信息,请补充到这里
@nickyc975 nickyc975 self-assigned this Mar 30, 2023
@nickyc975 nickyc975 added the bug Something isn't working label Mar 30, 2023
@nickyc975
Copy link
Member

It seems that we broke the CSP of the original website. We will fix it.

nickyc975 added a commit that referenced this issue Mar 31, 2023
@nickyc975
fix: do not mess up the CSP of the websites (#423, #503)
51eaa6f
@nickyc975
Copy link
Member

The problem should be fixed in the next version.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@nickyc975 nickyc975

Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@skorpions2000 @nickyc975