[wp-trac] [WordPress Trac] #39941: Allow using Content-Security-Policy without unsafe-inline

WordPress Trac noreply at wordpress.org
Fri Oct 22 13:12:41 UTC 2021


#39941: Allow using Content-Security-Policy without unsafe-inline
-------------------------------------------------+-------------------------
 Reporter:  tomdxw                               |       Owner:
                                                 |  adamsilverstein
     Type:  enhancement                          |      Status:  closed
 Priority:  normal                               |   Milestone:  5.7
Component:  Security                             |     Version:  4.8
 Severity:  normal                               |  Resolution:  fixed
 Keywords:  has-patch has-unit-tests commit      |     Focuses:  javascript
  has-dev-note                                   |
-------------------------------------------------+-------------------------

Comment (by jmlapam):

 Replying to [comment:99 enricocarraro]:
 > Yes, take a look at this article:
 https://make.wordpress.org/core/2021/02/23/introducing-script-attributes-
 related-functions-in-wordpress-5-7/

 Yeah, I saw it. Would you say the filter `wp_script_attributes` can do the
 job, or do you have something still in progress on this?

-- 
Ticket URL: <https://core.trac.wordpress.org/ticket/39941#comment:100>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform


More information about the wp-trac mailing list