Open Bug 1446231 Opened 2 years ago Updated 5 days ago
Override page CSP for inline script nodes injected by extension content scripts
+++ This bug was initially created as a clone of Bug #1415352 +++ (I forgot I hadn't already done this.) This is similar to bug 1415352, but for <script> rather than <style> nodes. There's also the question of possibly adding similar exemptions for inline event listener attributes and eval() calls, but those are much more difficult problems, so I'm going to handle them separately.
Hello Kris, is there anything I can do to help get this issue fixed ? I've never submit code to the Firefox codebase but with a few pointers I will gladly do so. Thanks Guillaume
You need to log in before you can comment on or make changes to this bug.