Won't whitelisting unsafe-inline and unsafe-eval kind of defeat the whole CSP? Yes. A tight CSP will make it harder to exploit XSS by ...
確定! 回上一頁