UNPKG

@react-native/debugger-frontend

Version:

Debugger frontend for React Native based on Chrome DevTools

github.com/facebook/react-native/tree/HEAD/packages/debugger-frontend

facebook/react-native

10 lines (6 loc) 608 B
1
2
3
4
5
6
7
8
9
10
# Content Security Policy blocks inline execution of scripts and stylesheets The Content Security Policy (CSP) prevents cross-site scripting attacks by blocking inline execution of scripts and style sheets. To solve this, move all inline scripts (e.g. `onclick=[JS code]`) and styles into external files. ⚠️ Allowing inline execution comes at the risk of script injection via injection of HTML script elements. If you absolutely must, you can allow inline script and styles by: * adding `unsafe-inline` as a source to the CSP header * adding the hash or nonce of the inline script to your CSP header.