"content_security_policy" allows remote code execution in manifest.json #15603

Closed Answered by wpplumber

wpplumber asked this question in CLI - BEX mode

wpplumber
Mar 21, 2023

While triyng to upload a BEX I got the following error!

"content_security_policy" allows remote code execution in manifest.json
Unsafe assignment to innerHTML

Answered by wpplumber

I made the following changes and fixed:

"content_security_policy": "default-src 'self'"
Using Node.textContent

View full answer

Replies: 1 comment

wpplumber
Mar 22, 2023
Author

I made the following changes and fixed:

"content_security_policy": "default-src 'self'"
Using Node.textContent

0 replies

Answer selected by wpplumber

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment