Issues: w3c/webappsec-csp
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Author
Label
Projects
Milestones
Assignee
Sort
Issues list
Logic issue with resource hint check with multiple conflicting policies
#587
opened Jan 27, 2023 by
noamr
'report-hash'
: Adding hashes of blocked content to violation reports
#575
opened Oct 26, 2022 by
arturjanc
The editor's draft includes several features that no one has shipped.
#563
opened Sep 15, 2022 by
mikewest
when using report-uri / report-to when in report only mode
blocked-uri
is returned as inline
#551
opened Jun 29, 2022 by
allen-munsch
Problem caused by script-src-elem 'nonce-<nonce>' 'strcit-dynamic'
#548
opened Jun 3, 2022 by
seongil-wi
What should the default be for the "webrtc" directive in workers?
#538
opened Feb 15, 2022 by
alvestrand
Fetch rewrites ws/wss URLs, but browsers still report them in CSP
#532
opened Nov 22, 2021 by
annevk
Hashes bypass source-based allowlisting only on pre-request, not on post-request
#523
opened Nov 8, 2021 by
antosart
Previous Next
ProTip!
Follow long discussions with comments:>50.