@tsteur opened this Issue on October 20th 2021 Member
@justinvelluppillai commented on October 20th 2021 Contributor

That default-src CSP looks wrong, like it didn't apply the allowEmbedPage directives in SecurityPolicy class

@tsteur commented on October 20th 2021 Member

@justinvelluppillai doesn't look like this is called for the overlay feature maybe?

This Issue was closed on October 22nd 2021
Powered by GitHub Issue Mirror