-
Notifications
You must be signed in to change notification settings - Fork 15.6k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
google-protobuf struct_pb.js use unsafe-eval conflict with CSP #6770
Comments
BichengWang
changed the title
google-protobuf struct_pb.js use unsafe-eval conflict with
google-protobuf struct_pb.js use unsafe-eval conflict with CSP
Oct 15, 2019
I have the same problem |
Even though this issue is older (and has more thumbsups!), I'm going to call it a duplicate of protocolbuffers/protobuf-javascript#25. The newer issue has a bit more context, so I think it may be a better point for collecting further discussion. Please feel free to follow up there, and thanks for filing this issue! |
avm99963-gerrit
pushed a commit
to avm99963/infinitegforums
that referenced
this issue
Jan 21, 2022
In order to comply with the no-unsafe-eval CSP, we worked around issue protocolbuffers/protobuf#6770 by including a modified version of google-protobuf under the src/third_party folder. This CL updates the google-protobuf version to one which fixes this bug, and removes the workaround. Change-Id: Ida7943bad452ee930defbc136602a34910a41977
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Version: google-protobuf: 3.10.0
Language: Javascript
Operating system (Linux ...)
When using struct.proto's js file: struct_pb.js as a class to build Struct, the production environment give out error message as follows:
The struct_pb.js file line 13:
That's an unsafe_eval and cannot pass Content Security Policy-restricted environments.
The text was updated successfully, but these errors were encountered: