[wp-trac] [WordPress Trac] #39941: Allow using Content-Security-Policy without unsafe-inline
WordPress Trac
noreply at wordpress.org
Tue Jun 5 06:57:53 UTC 2018
#39941: Allow using Content-Security-Policy without unsafe-inline
-------------------------+--------------------------
Reporter: tomdxw | Owner: johnbillion
Type: enhancement | Status: accepted
Priority: normal | Milestone: 5.0
Component: Security | Version: 4.8
Severity: normal | Resolution:
Keywords: | Focuses: javascript
-------------------------+--------------------------
Comment (by giuse):
How is it possible to include nonces for inline scripts? I haven't found
any filter to do that. Is it possible with the current WordPress version?
If not so, it would be great if WordPress gives the possibility to filter
the output of <script type="text/javascript"> for inline scripts.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/39941#comment:14>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list