Publii icon indicating copy to clipboard operation
Publii copied to clipboard

Published 20 hours ago verified publisher icon GetPublii

[Feature Request]: Finetune for Content Security Policy

Open brzGatsu opened this issue 10 months ago • 0 comments

Feature Description

With publii it is currently not possible to tune the CSP response header up to maximum safety. Mozilla Observatory recommends to not use any inline styles or inline scripts. Both publii and the technews theme make use of these (i.e. for lazy loading) which forces me to set "unsafe-inline" in the CSP.

brzGatsu avatar Apr 23 '24 09:04 brzGatsu