New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add Content Security Policy #8
Conversation
Deploy preview for condescending-bhaskara-d5a97a ready! Built with commit 3b175fa https://deploy-preview-8--condescending-bhaskara-d5a97a.netlify.com |
1510205
to
f2d5eb1
Compare
This comment has been minimized.
This comment has been minimized.
Upstreaming in mkdocs/mkdocs#1907 |
2938df2
to
0d6e494
Compare
That URI (
|
This will actually need updating, if we load more things from CDNJS. I'll update in a moment and request a re-review :3 |
This is more flexible, and lets us have notations for multiline strings.
This avoids needing `script-src: 'unsafe-inline'` in the CSP.
Unsure where the data: image is coming from, though...
This is to preserve compatibility with external scripts, like the search plugin.
@reuvenpo Could you re-review? Here is what changed:
|
No description provided.