收藏
回答

开发工具遇到提示信息,怎么修复或者屏蔽掉?

  1. Content Security Policy of your site blocks the use of 'eval' in JavaScript
  2. The Content Security Policy (CSP) prevents the evaluation of arbitrary strings as JavaScript to make it more difficult for an attacker to inject unathorized code on your site.
  3. To solve this issue, avoid using eval()new Function()setTimeout([string], ...) and setInterval([string], ...) for evaluating strings.
  4. If you absolutely must: you can enable string evaluation by adding unsafe-eval as an allowed source in a script-src directive.
  5. ⚠️ Allowing string evaluation comes at the risk of inline script injection.

如图所示

回答关注问题邀请回答
收藏

1 个回答

  • 维她命系
    维她命系
    04-01

    点击 Issues 旁边关闭按钮

    04-01
    有用
    回复 1
    • 雾都小哥
      雾都小哥
      04-06
      关键是他一直有个黄色警告很烦
      04-06
      回复
登录 后发表内容
问题标签