mirror of
https://github.com/roytam1/palemoon27.git
synced 2026-06-01 07:39:26 +00:00
Pale Moon
c3b6fc86bd
Site in question are solely relying on the deprecated `child-src` directive. Deprecation in CSP-3: https://w3c.github.io/webappsec-csp/#directive-child-src Important: This is a rather course temporary workaround and should be removed when the standard stabilizes or a more accurate solution is found. The main reason for this workaround is that sites remove sources from the `script-src`/`default-src` list for workers, expecting it to be handled solely by `child-src`. Tag #949