…At the cost of having to add `img-src data:;` to your CSP, which is unsafe. htt... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		velcrovan 4 months ago \| parent \| context \| favorite \| on: Get Out of My Head …At the cost of having to add `img-src data:;` to your CSP, which is unsafe. https://security.stackexchange.com/questions/94993/is-includ...

lxgr 4 months ago [–]

How is that unsafe exactly?

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact