[webkit-reviews] review granted: [Bug 53867] Disable script elements when a CSP header is present : [Attachment 81778] Patch
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Wed Feb 9 02:33:48 PST 2011
Adam Barth <abarth at webkit.org> has granted jochen at chromium.org's request for
review:
Bug 53867: Disable script elements when a CSP header is present
https://bugs.webkit.org/show_bug.cgi?id=53867
Attachment 81778: Patch
https://bugs.webkit.org/attachment.cgi?id=81778&action=review
------- Additional Comments from Adam Barth <abarth at webkit.org>
View in context: https://bugs.webkit.org/attachment.cgi?id=81778&action=review
This gets redirects wrong, of course, but it's a starting point.
> Source/WebCore/page/ContentSecurityPolicy.h:40
> + // Determines whether the external script should be loaded based on the
Content
> + // Security Policy.
This comment doesn't add any value. We should just remove it.
More information about the webkit-reviews
mailing list