-
Notifications
You must be signed in to change notification settings - Fork 9
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
miscweb:grunt: add necessary exceptions to CSP headers
**miscweb** - script-src: add 'wasm-unsafe-eval' for WebAssembly-driven search on bugs.jquery.com, bugs.jqueryui.com, and plugins.jquery.com - img-src: allow secure.gravatar.com images on plugins.jquery.com - media-src: allow content.jquery.com media on podcast.jquery.com **grunt** - script-src: add 'unsafe-eval' for the search functionality on gruntjs.com/plugins - the datatables plugin uses jQuery's eval. While later versions of jQuery switched to using script tags for eval, it would still require an exception. The best solution would be to re-implement search, but that will take time.
- Loading branch information
Showing
3 changed files
with
34 additions
and
3 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters