Importing modules inside HTML imports

Anne van Kesteren annevk at
Mon Aug 18 00:57:39 PDT 2014

On Sun, Aug 17, 2014 at 8:52 PM, John Barton <johnjbarton at> wrote:
> The argument goes like this: we all want secure Web pages, we can't secure
> Web pages that allow inline scripts, therefore we have to ban inline
> scripts.
> If the argument is wrong, ignore my advice, CSP will die.  I personally
> think that would be great.

It seems you did not read what I wrote. CSP does support inline
scripts these days.


More information about the es-discuss mailing list