You are viewing a plain text version of this content. The canonical link for it is here.

Posted to notifications@ofbiz.apache.org by GitBox <gi...@apache.org> on 2021/01/29 17:05:54 UTC

[GitHub] [ofbiz-framework] JacquesLeRoux edited a comment on pull request #204: added a report uri and unsafe-inline to the csp header.

JacquesLeRoux edited a comment on pull request #204:
URL: https://github.com/apache/ofbiz-framework/pull/204#issuecomment-657196086


   Hi Alex,
   
   I agree there are still inline js/css, even if most are handled correctly. We have related Jiras to eventually use require.js: https://issues.apache.org/jira/browse/OFBIZ-9465 https://issues.apache.org/jira/browse/OFBIZ-9976. Even if they not yet got much attention we still hope to work on it.
   
   So you can do that in your own project, we won't in official repo. If you disagree you may start a thread on the [dev ML](dev@ofbiz.apache.org). Else please close.


----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

For queries about this service, please contact Infrastructure at:
users@infra.apache.org