堆栈内存溢出
  简体   繁体   English

CSP是否要求“严格使用”

[英]Does CSP require “use strict”

 原文  2017-01-22 21:14:41       javascript/ content-security-policy

问题描述

Do I have to use the "use script" directive when serving my code with Content Security Policy enabled? 在启用内容安全策略的情况下提供代码时,是否必须使用"use script"指令? I cannot find any reference that says it is enforced but many code examples have it. 我找不到任何引用说它是强制执行的,但是许多代码示例都包含它。 I don't know if it's just best practice or required ? 我不知道这是最佳实践还是必需的

1 个解决方案

解决方案1
 1 已采纳  2017-01-22 21:16:52

Do I have to use the "use script" directive when serving my code with Content Security Policy enabled? 在启用内容安全策略的情况下提供代码时,是否必须使用“使用脚本”指令?

No 没有

I cannot find any reference that says it is enforced 我找不到任何引用说它被强制执行

Exactly 究竟

but many code examples have it. 但是很多代码示例都有它。 I don't know if it's just best practice or required? 我不知道这是最佳实践还是必需的?

"use strict" is good practise entirely independent of the use (or otherwise) of CSP. "use strict"是完全独立于CSP使用(或其他方式)的良好实践。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 const os = require('os')SyntaxError:在严格模式下使用const - const os = require('os') SyntaxError: Use of const in strict mode “use strict”是否适用于在严格范围内声明的函数? - Does “use strict” apply to functions declared in a strict scope? React-CSP 发出严格的动态 - React-CSP issue strict dynamic “严格使用”如何修改Javascript中“此”的规则? - How does “use strict” modify the rules for “this” in Javascript? 严格模式下不会出现使用隐式参数吗? - strict mode does not appear the use of the implicit arguments? 为什么“严格使用”不尊重变量范围 - Why does “use strict” not respect variable scope 构造函数中的“使用严格”是否扩展到原型方法? - Does “use strict” in the constructor extend to prototype methods? JSONP是否需要使用JavaScript? - Does JSONP require the use of JavaScript? 使用'strict-dynamic'CSP指令加载脚本的正确方法是什么? - What is the correct way to load a script with the 'strict-dynamic' CSP directive? Chrome扩展程序通过严格的CSP将具有动态值的脚本注入页面 - Chrome extension inject script with dynamic value into page with strict CSP
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM