securedrop icon indicating copy to clipboard operation
securedrop copied to clipboard

Published 20 hours ago verified publisher icon freedomofpress

CSP error on production servers with no visible effect

Open eloquence opened this issue 2 years ago • 0 comments

Description

Tor Browser displays a CSP error on the console when loading a production Source Interface or Journalist Interface (2.1.0), but it appears to have no visible effect.

Steps to Reproduce

  1. Load a prod 2.1.0 Source Interface or Journalist Interface in Tor Browser without custom add-ons

Expected Behavior

No errors logged on console

Actual Behavior

CSP error Content Security Policy: The page’s settings blocked the loading of a resource at data: (“default-src”).

No other apparent effect

eloquence avatar Feb 17 '22 20:02 eloquence