Open Issues Need Help
View All on GitHub Fix script-src in CSP header about 1 month ago
AI Summary: Update the Content Security Policy (CSP) header to replace the unsafe `script-src` directive with a nonce or hash-based approach for improved security. This involves modifying the server-side code responsible for setting the CSP header.
Complexity:
3/5
bug help wanted Important