Content Security Policy of your site blocks the use of eval in JavaScript #933
antoniolucenafaria
started this conversation in
General
Replies: 1 comment
-
|
Hello, No you should not. htmly does not control CSP. So maybe it's your browser or your server's HTTP headers that controls it. |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
-
This is what I get from after accessing Developer Tool and selecting Network on my browser. Regardless, HTMLy seems to be working without any problems. Any idea where one or several of the functions listed bellow is/are in the HTMLy code? Should I be concerned?
Thank you!
Message: "Content Security Policy of your site blocks the use of eval in JavaScript."
Details:
The CSP prevents the use of eval(), new Function(), setTimeout([string], ...), and setInterval([string], ...) for evaluating strings, as these are considered unsafe due to the risk of inline script injection.
Affected Resource: 1 script-src directive is blocked.
Beta Was this translation helpful? Give feedback.
All reactions