ProjectSegfault/invidious-experimenting
4
0
Fork 0
forked from midou/invidious
Code Pull Requests Activity
606dd11b4f
invidious-experimenting/assets/js/global.js
leonklingele 70cbe91776
Migrate to a good Content Security Policy (#1023) 
So attacks such as XSS (see [0]) will no longer be of an issue.

[0]: https://github.com/omarroth/invidious/issues/1022
2020-03-15 16:46:08 -05:00

4 lines
262 B
JavaScript
Raw Blame History

// Disable Web Workers. Fixes Video.js CSP violation (created by `new Worker(objURL)`):
// Refused to create a worker from 'blob:http://host/id' because it violates the following Content Security Policy directive: "worker-src 'self'".
window.Worker = undefined;
View Git Blame Copy Permalink