content-security-policy.com icon indicating copy to clipboard operation
content-security-policy.com copied to clipboard

Published 20 hours ago verified publisher icon foundeo

`base-uri` is missing

Open xPaw opened this issue 5 years ago • 1 comments

https://www.w3.org/TR/CSP2/#directive-base-uri

I would also suggest adding base-uri 'none'; to the examples because it does not fallback to default-src.

xPaw avatar Jan 13 '20 14:01 xPaw

Good suggestion, we'll get that updated.

pfreitag avatar Jan 13 '20 16:01 pfreitag