BlackHawk
(Black Hawk)
1
Hello,
I got this warning into the validation result of AMO checking process :
“content_security_policy” is defined in the manifest.json
Warning: A custom content_security_policy needs additional review.
My mainifest.json has :
“content_security_policy”: “script-src ‘self’”,
NilkasG
(Niklas Gollenstede)
2
Why did you add that? I’m pretty sure this CSP is not even accepted by Firefox, so this entry won’t have any effect.
Unless you have a reason to disallow all object-src
es, which is what this would do if Firefox does accept it, just remove it.
1 Like