Closed Bug 1179062 Opened 5 years ago Closed 5 years ago
investigate marketplace for apps that use CSP
We need to review the usage of the "csp" manifest attribute in the marketplace. I suspect it is rarely used, and rarely used correctly when it is used. Basically we need to determine if we we really need to support a manifest equivalent in the new security model. My hunch is "no" but we should test this.
I compiled an overview of CSP usage here: https://docs.google.com/document/d/1qCtIfvNmDhCho1QSBMP9TyqTOU_JmhoqddnpvLSnbes
5 years ago
Status: NEW → RESOLVED
Closed: 5 years ago
Resolution: --- → FIXED
You need to log in before you can comment on or make changes to this bug.