Content Security Policy requires 'unsafe-eval' for script-src
dsouza95 opened this issue · 2 comments
Hello,
Using a strict Content Security Policy (CSP) with the DocumentEditor and DocumentEditorContainer components, we are requested to add the unsafe-eval parameter to our rules, as seen on the image below:
I have checked the Syncfusion docs on CSP errors, such as https://ej2.syncfusion.com/javascript/documentation/common/how-to/csp-errors, but none of the suggested solutions apply as we are not using rendering templates or adding images directly. Is it possible that the DocumentEditor or the DocumentEditorContainer components are doing this themselves?
We are using version 22.1.41 of the Document Editor component. I would be happy to help with any additional information or a PR if someone points me in the right direction.
Since there has been no activity on this issue for over a week, we are closing it as part of our routine maintenance. If the previously shared solution doesn't resolve the problem or if you have additional information to assist us, please feel free to reopen the issue. We appreciate your understanding.