As suggested by Ricky in bug 866522 comment 28, it would be nice if there was a switch to provide scripts the user trusts and wants to be allowed even if a website's CSP disallows this. This could help restore the bookmarklet and pagemod use cases.
Probably worth mentioning Jesse Ruderman said: > I like the idea of settings to force-allow scripts from certain domains. in bug 866522 comment 31, and suggested creating this new bug.
Severity: normal → enhancement
Priority: -- → P4
But that is ONLY HALF of the "solution". (or thereabouts -- or a **** solution to the whole issue)
Priority: P3 → P2
Priority: P2 → P3
Whiteboard: [domsecurity-backlog] → [domsecurity-backlog2]
You need to log in before you can comment on or make changes to this bug.