You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I get this warning: "Subresource Integrity (SRI) not implemented, and external scripts are loaded over HTTP or use protocol-relative URLs via src="//...", even though the only script on my page is:
I don't want to stop using the base64 inline scripts - it allows them to have defer attribute and provides less opportunities for exploitation JSON encoded data in the script by injecting </script> in a string
The text was updated successfully, but these errors were encountered:
exyi
linked a pull request
Jan 25, 2023
that will
close
this issue
I get this warning: "Subresource Integrity (SRI) not implemented, and external scripts are loaded over HTTP or use protocol-relative URLs via src="//...", even though the only script on my page is:
This is the website I tested it on: https://observatory.mozilla.org/analyze/exyi.cz
I don't want to stop using the base64 inline scripts - it allows them to have
deferattribute and provides less opportunities for exploitation JSON encoded data in the script by injecting</script>in a stringThe text was updated successfully, but these errors were encountered: