Importing modules inside HTML imports

Anne van Kesteren annevk at annevk.nl
Mon Aug 18 00:57:39 PDT 2014


On Sun, Aug 17, 2014 at 8:52 PM, John Barton <johnjbarton at google.com> wrote:
> The argument goes like this: we all want secure Web pages, we can't secure
> Web pages that allow inline scripts, therefore we have to ban inline
> scripts.
>
> If the argument is wrong, ignore my advice, CSP will die.  I personally
> think that would be great.

It seems you did not read what I wrote. CSP does support inline
scripts these days.


-- 
http://annevankesteren.nl/


More information about the es-discuss mailing list