Reputation: 29096
Allowing eval in Electron?
I would like to write a small Electron application using Two.js but I realized Electron doesn't like anyone to use eval.
If I do this in renderer.js:
let u = eval('1 + 1');
I get this issue:
Uncaught EvalError: Refused to evaluate a string as JavaScript because 'unsafe-eval' is not an allowed source of script in the following Content Security Policy directive: "script-src 'self'".
Of course I enabled allowRunningInsecureContent: true in the webPreferences.
Is there any way of running packages that use eval in Electron?
Upvotes: 2
Views: 2201
Answers (1)
Reputation: 4481
You can simply add this to the <head> of your loaded html
<meta http-equiv="Content-Security-Policy" content="default-src 'self'">
The issue comes not from electron but I assume you're running the electron application via a local web server, in that case you also need to provide the right configuration for the CSP.
Upvotes: 4
Related Questions
- (electron with server) Uncaught EvalError: Refused to evaluate a string as JavaScript because 'unsafe-eval' is not an allowed source of script
- Evaluating code directly from JSON, bad idea or is there a better way?
- How to execute Electron js command in HTML?
- Execute Executable with Electronjs
- how to get a return value from executeJavaScript
- Electron: run shell commands with arguments
- Eval() in if statement
- variable undefined inside electron executeJavascript
- How to call some logic in Electron application from outside?
- Alternatives to eval