CSP Trusted Types #1244
wildfiremedia
started this conversation in
Proposal
CSP Trusted Types
#1244
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
-
Body
Goals
To support CSP Trusted Type and fallback to browsers that do not support.
https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/Content-Security-Policy/trusted-types
Assuming that Server Islands might use some form of DOM manipulation along with custom code, this would strength XSS.
I'm unsure if this is relevant to the existing CSP experimental in Astro.
Beta Was this translation helpful? Give feedback.
All reactions