Support Content Security Policy

Created on 4 September 2025, 27 days ago

Problem/Motivation

Drupal offers the Content Security Policy module → to easily configure CSP for a site. Gin Toolbar uses an inline script in at least one place, so we need to add a nonce attribute to that script.

Proposed resolution

Add nonce attributes and append to the CSP policies where necessary.

📌 Task

Status

Active

Version

3.0

Component

Code

Created by

🇧🇪Belgium dieterholvoet Brussels

Live updates comments and jobs are added and updated live.

Merge Requests

!67Support Content Security Policy
Open
🇧🇪Belgium dieterholvoet
updated 27 days ago

Comments & Activities

Issue created by @dieterholvoet
Merge request !67Add nonce attribute → (Open) created by dieterholvoet
Comment 27 days ago →
🇧🇪Belgium dieterholvoet Brussels
Setting to Needs work because more changes might be necessary, don't have time to do a deep dive right now.
Pipeline finished with Success
27 days ago
Total: 147s
#589765

contrib.social Blog FAQ Discussions

Production build 0.71.5 2024

Support Content Security Policy

Problem/Motivation

Proposed resolution

Merge Requests

!67Support Content Security PolicyOpen

Comments & Activities

!67Support Content Security Policy
Open