[wp-trac] [WordPress Trac] #61452: remove Content-Security-Policy headers: 'unsafe-inline', 'unsafe-eval'
WordPress Trac
noreply at wordpress.org
Mon Jun 17 12:48:04 UTC 2024
#61452: remove Content-Security-Policy headers: 'unsafe-inline', 'unsafe-eval'
--------------------------+------------------------------
Reporter: wpsalvio | Owner: (none)
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Security | Version: 6.4.3
Severity: normal | Resolution:
Keywords: | Focuses:
--------------------------+------------------------------
Comment (by samiamnot):
@wpsalvio ,
There is an open ticket #61452 opened 9 years ago that covers this
request. If it were easy to implement (without breaking millions of
WordPress sites), it would have already have been done. There is also some
work done as part of #51407 that is related to the above, as is #53902.
Also see #39941 where some of the work was done for WordPress 5.7.
I look forward to the day that this enhanced security is available to
WordPress sites.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/61452#comment:1>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list