Content Security Policy of your site blocks the use of 'eval' in JavaScript`
The Content Security Policy (CSP) prevents the evaluation of arbitrary strings as JavaScript to make it more difficult for an attacker to inject unathorized code on your site.
To solve this issue, avoid using
eval(),new Function(),setTimeout([string], ...)andsetInterval([string], ...)for evaluating strings.If you absolutely must: you can enable string evaluation by adding
unsafe-evalas an allowed source in ascript-srcdirective.⚠️ Allowing string evaluation comes at the risk of inline script injection.
Нужно исправить эту проблему
-
1 day356 USD
3853 24 0 1 day356 USD
Good day ,
I can help with the problem related to blocking the use of 'eval' in JavaScript due to Content Security Policy (CSP) on your site. I can analyze the code, introduce secure alternatives and set the CSP to allow the necessary operations.
My Rate is $16 per hour. To start work, I will need access to the website code and additional information on the requirements.
with respect,
Maximum
-
1 day11 USD
491 15 0 1 day11 USD
https://stackoverflow.com/questions/65445255/content-security-policy-of-your-site-blocks-the-use-of-eval-in-javascript-wa if is help you
-
Its bad practice to use eval in js. It's not safe. You need to check your js code where uses eval and make sure that this code without vulnerability.
-
Current freelance projects in the category Java
Development of an Android application player for the online TV service
601 USD
We need an Android developer to create a native Android application for an online TV service. Two versions are planned: for mobile devices: smartphones and tablets; for Android TV / Android STB: set-top boxes. Estimated timeline: up to 3 months. Estimated budget: 150,000… Java, App Development for Android ∙ 1 month 2 days back ∙ 33 proposals |
Vinogradov