StackOverflow Questions for Tag: content-security-policy

Rafael de Castro

Reputation: 1068

Content Security Policy: "img-src 'self' data:"

htmlcanvasionic-frameworkcontent-security-policy

Score: 76

Answers: 8

invalid

Reputation: 1507

How can I remove eval from Criteo's sslwidget.criteo.com/event which violates Content Security Policy?

javascriptsecuritycontent-security-policycriteo

Score: 0

Answers: 0

Jacob Chmielowiec

Reputation: 133

CSP issue on cold load with chrome and Edge but works on refresh. Firefox also always works fine

javascriptgoogle-chromemicrosoft-edgecontent-security-policybrowser-cache

Score: 1

Answers: 1

Techy

Reputation: 11

How can I bypass CSP/CORS policies on IFrames in browser extensions?

iframebrowsercorsmicrosoft-edgecontent-security-policy

Score: 1

Answers: 0

Abdulwahab Almestekawy

Reputation: 654

Refused to apply inline style because it violates Content Security Policy (using hash for JQuery inline style)

csshttpcontent-security-policy

Score: 0

Answers: 1

Narwhal

Reputation: 43

Is there a way to block <script> alert using Content-Security-Policy header but with unsafe-inline

htmlsecurityxsscontent-security-policy

Score: 0

Answers: 0

Alisha Malla

Reputation: 1

Unable to view SVG image due to Content Security Policy error in Angular

angularsvgfile-uploadazure-blob-storagecontent-security-policy

Score: 0

Answers: 0

VikR

Reputation: 5138

Helmet Connect-Src CSP is present on Dev, but Not on Production?

javascriptmeteorcontent-security-policyreact-helmet

Score: 0

Answers: 1

Pianoman

Reputation: 385

Why is Facebook using http://localhost:3103 in their content security policy

content-security-policy

Score: -5

Answers: 0

Mir-Ismaili

Reputation: 16868

Security issue: CacheStorage can violate Content Security Policy (CSP) restrictions

javascriptservice-workercontent-security-policycachestorageunsafe-eval

Score: 0

Answers: 1

Corrl

Reputation: 7689

How to externalize default inline script to prevent CSP script-src sha entry?

sveltekitcontent-security-policysveltekit-adapter-static

Score: 0

Answers: 0

Avogatro

Reputation: 11

How do I remove unsafe-inline from Content Security Policy and use server-send data to generate html elements, triggered by user interaction?

javascripthtmlxsscontent-security-policymeta-tags

Score: 1

Answers: 1

tbd_

Reputation: 1248

How to debug "Content-Security-Policy (CSP)" and nonces in NextJS

securitynext.jscontent-security-policy

Score: 2

Answers: 2

Lukasz J

Reputation: 51

Content Security Policy (CSP) - Problem with dynamic inline style during OneTrust integration

javascriptcookiescontent-security-policyinline-stylesone-trust

Score: 5

Answers: 3

AliAb

Reputation: 569

GoogleTagManager isnt working because of Content Security Policy

reactjsnext.jsgoogle-tag-managercontent-security-policy

Score: 0

Answers: 1

S Mxller

Reputation: 131

Fullcalendar.io not working with CSP nonce on safari Browser

iosfullcalendarmobile-safaricontent-security-policynonce

Score: 0

Answers: 2

ViperJuice

Reputation: 63

CSP directive violation in Chrome extension content script

javascriptgoogle-chrome-extensionclickcontent-security-policychrome-extension-manifest-v3

Score: 5

Answers: 5

Sivaram Kumar

Reputation: 331

How can I substitute the CSP nonce value in Angular index.html using Apache httpd.conf and mod_cspnonce?

angularapachecontent-security-policyhttpd.confnonce

Score: 1

Answers: 2

Francisco Carriedo Scher

Reputation: 550

Content-Security-Policy - Reporting API - Setup

securitycontent-security-policywebsecurity

Score: 0

Answers: 1

leremjs

Reputation: 1069

How to use ngCspNonce in Angular

angularcontent-security-policy

Score: 2

Answers: 2

PreviousPage 1Next

StackOverflow Questions for Tag: content-security-policy

Content Security Policy: &quot;img-src &#39;self&#39; data:&quot;

How can I remove eval from Criteo&#39;s sslwidget.criteo.com/event which violates Content Security Policy?

CSP issue on cold load with chrome and Edge but works on refresh. Firefox also always works fine

How can I bypass CSP/CORS policies on IFrames in browser extensions?

Refused to apply inline style because it violates Content Security Policy (using hash for JQuery inline style)

Is there a way to block &lt;script&gt; alert using Content-Security-Policy header but with unsafe-inline

Unable to view SVG image due to Content Security Policy error in Angular

Helmet Connect-Src CSP is present on Dev, but Not on Production?

Why is Facebook using http://localhost:3103 in their content security policy

Security issue: CacheStorage can violate Content Security Policy (CSP) restrictions

How to externalize default inline script to prevent CSP script-src sha entry?

How do I remove unsafe-inline from Content Security Policy and use server-send data to generate html elements, triggered by user interaction?

How to debug &quot;Content-Security-Policy (CSP)&quot; and nonces in NextJS

Content Security Policy (CSP) - Problem with dynamic inline style during OneTrust integration

GoogleTagManager isnt working because of Content Security Policy

Fullcalendar.io not working with CSP nonce on safari Browser

CSP directive violation in Chrome extension content script

How can I substitute the CSP nonce value in Angular index.html using Apache httpd.conf and mod_cspnonce?

Content-Security-Policy - Reporting API - Setup

How to use ngCspNonce in Angular

Content Security Policy: "img-src 'self' data:"

How can I remove eval from Criteo's sslwidget.criteo.com/event which violates Content Security Policy?

Is there a way to block <script> alert using Content-Security-Policy header but with unsafe-inline

How to debug "Content-Security-Policy (CSP)" and nonces in NextJS