Y
Hacker News
new
|
ask
|
show
|
jobs
by
aboodman
3968 days ago
CSP does help, but it is document-specific, not js-context specific. At least in Chrome, tracing the js context that was responsible for some network request would be significantly more difficult to implement.