CSP compliance

  • Resolved ninchaaaaa

    (@ninchaaaaa)


    3 years, 7 months ago

    Hi there,

    First off, thanks for the amazing work you’ve been providing!

    I’m creating this topic because it doesn’t seem to have been opened yet ; I hope I’m not creating a clone.

    We’ve been working on implementing a content security policy (CSP) on various WordPress websites with CLI installed on.

    As for now, if I’m not mistaken there is no simple solution to add any hash or nonce attribute to the differrent inline scripts written by your plugin ; is there any chance that the new WordPress functions can see implemented in future versions?

    Introducing script attributes related functions in WordPress 5.7

    For the moment, we can just add the non-compiled and compiled hashes from the scripts to the CSP, but that’s not the best move. ??

    Cheers,
    Charlie

Viewing 1 replies (of 1 total)
  • Plugin Author WebToffee

    (@webtoffee)

    Hi @ninchaaaaa,

    Thanks for reaching out to Webtoffee. As it will take some time to make the changes, we will add this to our backlogs and consider implementing it in a future update.

Viewing 1 replies (of 1 total)
  • The topic ‘CSP compliance’ is closed to new replies.

Tags