Remove misconfigured WTFs #71
Assignees
Comments
|
No, these styles are not present on the website and |
|
actually first one is probably from this extension https://github.com/daidaiworm/vimium see this file https://searchcode.com/codesearch/view/26916074/ |
|
Looking at second one I suspect it is also some SEO/malware extension to spam forums with SEO links as this snippet could be found alot on different message boards and it it adds extra styles to seo-related links. |
|
Close as explained? |
|
@MaceWindu yes, closed :) |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Many of the WTFs are just the result of misconfigured CSP directives. For example:
Those are both lacking
'self'forstyle-src, so their styles are getting blocked.A good chunk of the
script-sampleentries fall into this category. Anything withblocked-uri: selfshould be considered to be a misconfiguration--the developer is simply missing'self'.The text was updated successfully, but these errors were encountered: