Noticed this while investigating bug 1475681: Loading https://trowbotham.com/bug_tests/4159_1332269164.mp3 leads to the following message in the console: > Loading failed for the <script> with source “chrome://global/content/TopLevelVideoDocument.js”. 4159_1332269164.mp3:1:1 > Content Security Policy: The page’s settings blocked the loading of a resource at chrome://global/content/TopLevelVideoDocument.js (“script-src”).
See Bug 1475681 comment 7 for more context. Marking this as blocking the CSP meta bug so hopefully the right people find it.
You need to log in before you can comment on or make changes to this bug.