govau/design-system-components

'unsafe-eval' for strict CSP policy headers

kozillla opened this issue · 1 comments

kozillla commented

Hi Guys,

I am trying to use the animate package on the website where I'm setting up Content Security Policy headers, sadly it fails due to 'unsafe-eval' check.

It is caused by :

design-system-components/packages/animate/src/js/module.js

Line 343 in cc5cb0e

eval('exports.default = AU');

Is it any reason why eval is used here? It would be a minor change to exports.default = AU
I am happy to create PR if require.

gordjw commented

Thanks for reporting @kozillla, change appears logical and tests are passing.
Will push this into production asap.

  • ❤️3