Y
Hacker News
new
|
ask
|
show
|
jobs
by
mh-
1286 days ago
Since one of the parent comments mentioned AJAX, I'll add that you'll also be prevented from eval'ing that payload.
1 comments
oefrha
1286 days ago
Yes, I should have been more clear: CSP doesn’t allow you to download an external script
and execute it
, which requires unsafe-eval.
link
TeMPOraL
1285 days ago
Sounds like your exception will need to become a language interpreter itself.
link
TOMDM
1285 days ago
Does manifest v3 support wasm?
Time to package a JavaScript interpreter into wasm and run it within the extension.
link