MozillaWiki

Security/CSP/Spec: Difference between revisions

Page Discussion

Security/CSP/Spec (view source)

Revision as of 17:59, 16 September 2009

166 bytes added ,  16 September 2009
m
→‎No inline scripts will execute
(→‎Source Expression List: port inheritance steps)
Line 47: Line 47:
*# javascript: link injection
*# javascript: link injection
*# HTML attribute injection
*# HTML attribute injection
'''On Violation:''' a violation report will be sent with the <tt>violated-directive</tt> value set to "Base Restriction Violation: no inline scripts will execute.".


==Code will not be created from strings==
==Code will not be created from strings==
Sidstamm
canmove, Confirmed users
1,537

edits

Retrieved from "https://wiki.mozilla.org/Special:MobileDiff/168785"