TEST_CODEOWNERS/rails
3
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity
10dc425e8e
rails/actionpack/CHANGELOG.md
Joe Haig 10dc425e8e
Add CSP mapping for 'wasm-unsafe-eval' 
The `'wasm-unsafe-eval'` keyword for the Content Security Policy allows the
loading and execution of WebAssembly modules without the need to allow unsafe
JavaScript execution via `'unsafe-eval'`. A mapping is added so that the symbol
`:wasm_unsafe_evel` can be used for this keyword in the policy configuration in
`config/initializers/content_security_policy.rb`.
2024-05-28 18:39:48 +00:00

333 B
Raw Blame History

  • Add :wasm_unsafe_eval mapping for content_security_policy

    # Before
policy.script_src "'wasm-unsafe-eval'"

# After
policy.script_src :wasm_unsafe_eval

    Joe Haig

Please check 7-2-stable for previous changes.