You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
With publii it is currently not possible to tune the CSP response header up to maximum safety. Mozilla Observatory recommends to not use any inline styles or inline scripts. Both publii and the technews theme make use of these (i.e. for lazy loading) which forces me to set "unsafe-inline" in the CSP.
The text was updated successfully, but these errors were encountered:
Feature Description
With publii it is currently not possible to tune the CSP response header up to maximum safety. Mozilla Observatory recommends to not use any inline styles or inline scripts. Both publii and the technews theme make use of these (i.e. for lazy loading) which forces me to set "unsafe-inline" in the CSP.
The text was updated successfully, but these errors were encountered: