| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | feat: Provide CSP nonce as `<meta>` element | Ferdinand Thiessen | 2024-08-13 | 1 | -3/+3 |
| | | | | | | | | | This way we use the CSP nonce for dynamically loaded scripts. Important to notice: The CSP nonce must NOT be injected in `content` as this can lead to value exfiltration using e.g. side-channel attacts (CSS selectors). Signed-off-by: Ferdinand Thiessen <opensource@fthiessen.de> | ||||
| * | chore(core): wrap initial state into hidden container | Grigorii K. Shartsev | 2024-07-30 | 1 | -0/+11 |
| Signed-off-by: Grigorii K. Shartsev <me@shgk.me> | |||||
 |
index : nextcloud-server.git | |
| Nextcloud server, a safe home for all your data: https://github.com/nextcloud/server | www-data |
| aboutsummaryrefslogtreecommitdiffstats |