Y
Hacker News
new
|
ask
|
show
|
jobs
by
LegionMammal978
432 days ago
It does seem like CSP nonces do not play well with caching (since they must have a different value on each page load), which would make them a detriment to performance.
1 comments
SahAssar
432 days ago
You can also include a hash of the contents in the CSP, which plays well with caching.
link
LegionMammal978
432 days ago
True, a hash works as a good alternative. (Unless you're doing super weird stuff like generating inline scripts at runtime.)
link