From bugzilla-daemon@bugs.koha-community.org Thu Feb 26 03:07:45 2026
From: bugzilla-daemon@bugs.koha-community.org
To: koha-bugs@lists.koha-community.org
Subject: [Koha-bugs] [Bug 38365] Add Content-Security-Policy HTTP header to
HTML responses
Date: Thu, 26 Feb 2026 02:06:50 +0000
Message-ID:
In-Reply-To:
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============4420263385979381822=="
--===============4420263385979381822==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=38365
David Cook changed:
What |Removed |Added
----------------------------------------------------------------------------
Attachment #193298|0 |1
is obsolete| |
--- Comment #214 from David Cook ---
Created attachment 193951
-->
https://bugs.koha-community.org/bugzilla3/attachment.cgi?id=193951&action=edit
Bug 38365: Add script to insert CSP nonces into templates
Add misc/devel/add_csp_nonces.pl which automatically adds CSP nonce
attributes to inline