Adam Williams
Adam Williams
The official Jammy .NET package is not fit for purpose and [conflicts](https://bugs.launchpad.net/ubuntu/+source/dotnet6/+bug/1984450) with software like Discord. This used to work absolutely fine with the PMC packages. Whilst I'm supportive of...
Pretty disappointing this still appears to be a problem. I did also look at hashes but if as @quinncomendant says the styles aren't static then a hash is out of...
@patrickhlauke What happened to the existing PR for this?
>@lol768 you probably ment @patrickkettner in your question about existing PRs :-) I blame the autocomplete :P
:+1: There are far too many JS libraries which do this and negatively impact overall security
Hey @kazzkiq, I personally don't care too much how the CSS is generated, I'm guessing @jkcclemens saw the interpolation and figured SASS was a good fit at built time. This...
Sounds good to me :smile:
>Note for everyone: you don't have to use unsafe-inline. CSP level 2 allows allowing (heh) specific inline styles/scripts via SHA hashes or nonces! Yeah, and it's undesirable. Should only be...
https://github.com/jstrieb/urlpages/blob/562416439512a7f7b13812a37356ac3cbcd1ca3e/editor/editor.js#L118 ```js history.replaceState({}, "", "/urlpages/editor/#" + window.btoa(JSON.stringify(data))); ```
We also unfortunately moved to Vite.