Improve javascript to not need unsafe-eval

Open on Drupal.org →

Created on 14 May 2023, over 1 year ago

Now the javascript contains a string that needs to be executed, changing this to be just a method reference, makes it a bit more secure. With the string, you need unsafe-eval in your CSP configuration for script-src. With this change, you don't need that anymore.

✨ Feature request

Status

Needs review

Version

1.4

Component

Code

Created by

🇧🇪Belgium daften

Live updates comments and jobs are added and updated live.

Sign in to follow issues

Comments & Activities

Issue created by @daften
Comment over 1 year ago →
🇧🇪Belgium daften
Patch in attachment.
Status changed to Needs review over 1 year ago11:13pm 14 May 2023
Comment over 1 year ago →
🇧🇪Belgium daften
Correct patch in attachment, apologies

contrib.social Blog FAQ Discussions

Production build 0.71.5 2024