thinginab comments

Repositories
Issues
Comments

Results 4 comments of


                                            thinginab

CSP isn't respected when a WebAssembly worker loads a script from a sandboxed iframe

I could be wrong, but I think this case I added might have the same cause - /preview isn't in the initial CSP header but /content is, which I think...

Add documentation to clarify that inscriptions are served from /content/<INSCRIPTION_ID>

> The more I think about this the less I like my ideas of a client-side /self endpoint or appending an object to window. Yall are making good points. I...

Allow dataurl in CSP-Origin for generated dom elements on /preview endpoint

Just further context. This simple html also fails in /preview or /inscription but works in /content `download` Error: Content-Security-Policy: The page’s settings blocked the loading of a resource at data:image/png;base64,iVBORw0KGgoAAAANSU…...

RASC on BTC

did I miss anything here?