Data

Tools

Indexes

Applications

Experiments

Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / slackhq/csp-html-webpack-plugin issues and pull requests

#127 - Support for Multiple script-src Policies in CSP

Issue - State: closed - Opened by icaldana 4 months ago

#126 - Incorrect hashes generated causing CSP violations

Issue - State: open - Opened by warnyul 8 months ago - 5 comments

#125 - Double encodes html entities (`&`, ` `, etc)

Issue - State: open - Opened by eamodio 10 months ago - 1 comment

#124 - Is this plugin still maintained?

Issue - State: open - Opened by ttencate 11 months ago

#123 - Doctype is mutilated

Issue - State: open - Opened by ttencate 11 months ago - 2 comments

#122 - removed

Issue - State: closed - Opened by LoganKells 12 months ago

#120 - Bump word-wrap from 1.2.3 to 1.2.4

Pull Request - State: open - Opened by dependabot[bot] about 2 years ago
Labels: dependencies

#119 - Bump tough-cookie and jsdom

Pull Request - State: open - Opened by dependabot[bot] about 2 years ago
Labels: dependencies

#118 - Bump json-schema and jsprim

Pull Request - State: open - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies

#117 - Bump ansi-regex from 5.0.0 to 5.0.1

Pull Request - State: open - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies

#116 - Bump webpack from 5.10.1 to 5.76.0

Pull Request - State: open - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies

#115 - Bump minimist from 1.2.5 to 1.2.8

Pull Request - State: open - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies

#114 - Bump json5 from 1.0.1 to 1.0.2

Pull Request - State: open - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies

#113 - Bump qs from 6.5.2 to 6.5.3

Pull Request - State: open - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies

#112 - Bump decode-uri-component from 0.2.0 to 0.2.2

Pull Request - State: open - Opened by dependabot[bot] over 2 years ago - 1 comment
Labels: dependencies

#111 - Wrong inline script hash when the file EOL is CRLF

Issue - State: open - Opened by chihiroxc almost 3 years ago - 1 comment

#110 - Bump terser from 4.8.0 to 4.8.1

Pull Request - State: open - Opened by dependabot[bot] about 3 years ago - 1 comment
Labels: dependencies

#109 - Bump node-fetch from 2.6.1 to 2.6.7

Pull Request - State: open - Opened by dependabot[bot] about 3 years ago - 1 comment
Labels: dependencies

#108 - Bump jsdom from 16.4.0 to 16.7.0

Pull Request - State: open - Opened by dependabot[bot] about 3 years ago - 1 comment
Labels: dependencies

#107 - No nonce values are showing up in the CSP string

Issue - State: open - Opened by tupton about 3 years ago

#106 - Bump minimist from 1.2.5 to 1.2.6

Pull Request - State: closed - Opened by dependabot[bot] over 3 years ago - 2 comments
Labels: dependencies

#105 - Angular 8+ ready

Issue - State: open - Opened by pahlers over 3 years ago - 4 comments

#104 - Support upgrade-insecure-requests

Pull Request - State: closed - Opened by BBosman over 3 years ago - 3 comments

#103 - Bump tmpl from 1.0.4 to 1.0.5

Pull Request - State: closed - Opened by dependabot[bot] almost 4 years ago - 1 comment
Labels: dependencies

#102 - Point CLA link in the contributing file to the correct project

Pull Request - State: open - Opened by StephanBijzitter almost 4 years ago

#101 - Allow nonceEnabled and hashEnabled to take single boolean values

Pull Request - State: open - Opened by StephanBijzitter almost 4 years ago - 2 comments

#100 - Change Jest configuration to also work on Windows

Pull Request - State: open - Opened by StephanBijzitter almost 4 years ago - 2 comments

#99 - Bump path-parse from 1.0.6 to 1.0.7

Pull Request - State: closed - Opened by dependabot[bot] almost 4 years ago - 1 comment
Labels: dependencies

#98 - Allow `nonceEnabled` to take a single boolean value

Issue - State: open - Opened by StephanBijzitter about 4 years ago - 2 comments

#97 - Bump glob-parent from 5.1.1 to 5.1.2

Pull Request - State: closed - Opened by dependabot[bot] about 4 years ago - 2 comments
Labels: dependencies

#96 - Bump ws from 7.4.1 to 7.4.6

Pull Request - State: closed - Opened by dependabot[bot] about 4 years ago - 2 comments
Labels: dependencies

#95 - Generates wrong hashes

Issue - State: closed - Opened by b-maslennikov about 4 years ago

#94 - Bump browserslist from 4.16.0 to 4.16.6

Pull Request - State: closed - Opened by dependabot[bot] about 4 years ago - 2 comments
Labels: dependencies

#93 - CSP Plugin doesn't put the nonce value into CSP meta tag on Windows

Issue - State: closed - Opened by LightwithoutLisonlyight about 4 years ago - 2 comments

#91 - Bump hosted-git-info from 2.8.8 to 2.8.9

Pull Request - State: closed - Opened by dependabot[bot] about 4 years ago - 2 comments
Labels: dependencies

#90 - Bump lodash from 4.17.20 to 4.17.21

Pull Request - State: closed - Opened by dependabot[bot] about 4 years ago - 2 comments
Labels: dependencies

#89 - Adding nonces to inline styles in <head>

Issue - State: closed - Opened by DirkWolthuis about 4 years ago - 1 comment

#88 - Bump y18n from 4.0.0 to 4.0.1

Pull Request - State: closed - Opened by dependabot[bot] over 4 years ago - 2 comments
Labels: dependencies

#87 - Generate hashes for external scripts and styles

Pull Request - State: closed - Opened by sersorrel over 4 years ago - 16 comments

#86 - Example of using with Helm and multiple environment/values files

Issue - State: closed - Opened by zleight1 over 4 years ago - 1 comment
Labels: Status: Help Wanted

#85 - Configure nonce also for preloaded scripts

Pull Request - State: closed - Opened by jukben over 4 years ago - 7 comments

#84 - Add nonce also for preloaded scripts

Issue - State: open - Opened by jukben over 4 years ago
Labels: Status: In Review

#83 - Yarn 2 support

Issue - State: closed - Opened by wegry over 4 years ago - 2 comments

#82 - [Security] Nonce reuse

Issue - State: open - Opened by lweichselbaum over 4 years ago - 12 comments

#81 - Add webpack compilation object to processfn

Pull Request - State: closed - Opened by samsaggace over 4 years ago - 6 comments

#80 - Regression in 5.0.1

Issue - State: closed - Opened by david-fong over 4 years ago - 5 comments

#79 - Problem in setting nonce when using a custom processFn

Issue - State: closed - Opened by KohanTorabi over 4 years ago - 2 comments

#78 - Updates to the readme to clarify best practices and how to configure the plugin

Pull Request - State: closed - Opened by AnujRNair over 4 years ago - 2 comments

#77 - Documentation tweaks

Issue - State: closed - Opened by maudnals over 4 years ago - 3 comments

#76 - Consider adding documentation for automatic webpack server restart

Issue - State: closed - Opened by maudnals over 4 years ago - 1 comment

#75 - HTML Parsing Fixes

Pull Request - State: closed - Opened by AnujRNair over 4 years ago - 1 comment

#74 - Bump node-notifier from 8.0.0 to 8.0.1

Pull Request - State: closed - Opened by dependabot[bot] over 4 years ago - 2 comments
Labels: dependencies

#73 - Cheerio 1.0.0-rc.4

Issue - State: closed - Opened by slandmann over 4 years ago - 1 comment

#72 - Upgrade more dev deps and peer dep requirements

Pull Request - State: closed - Opened by AnujRNair over 4 years ago - 1 comment

#71 - Upgrading deps to their latest versions

Pull Request - State: closed - Opened by AnujRNair over 4 years ago - 1 comment

#70 - Lodash 4.17.20

Issue - State: closed - Opened by slandmann over 4 years ago - 1 comment

#69 - Add webpack v5 as a peer dependency option

Pull Request - State: closed - Opened by david-fong over 4 years ago - 1 comment

#68 - Peer Dependency for WebPack v5

Issue - State: closed - Opened by david-fong over 4 years ago - 2 comments

#67 - Bump node-fetch from 2.6.0 to 2.6.1

Pull Request - State: closed - Opened by dependabot[bot] almost 5 years ago - 1 comment
Labels: dependencies

#66 - Bump elliptic from 6.5.1 to 6.5.3

Pull Request - State: closed - Opened by dependabot[bot] about 5 years ago - 1 comment
Labels: dependencies

#65 - Bump codecov from 3.6.5 to 3.7.1

Pull Request - State: closed - Opened by dependabot[bot] about 5 years ago - 1 comment
Labels: dependencies

#64 - Bump lodash from 4.17.15 to 4.17.19

Pull Request - State: closed - Opened by dependabot[bot] about 5 years ago - 1 comment
Labels: dependencies

#63 - Elements within <noscript> are not hashed

Issue - State: closed - Opened by bigotilda about 5 years ago - 2 comments

#62 - Honor XHTML mode

Pull Request - State: closed - Opened by sjinks about 5 years ago - 4 comments

#61 - XHTML mode is not honored

Issue - State: closed - Opened by sjinks about 5 years ago - 1 comment

#60 - Removing codecov token

Pull Request - State: closed - Opened by AnujRNair over 5 years ago - 1 comment

#59 - Upgrade NPM packages

Pull Request - State: closed - Opened by AnujRNair over 5 years ago - 1 comment

#58 - Adding ability to overwrite the default processFn method with a custom one.

Pull Request - State: closed - Opened by AnujRNair over 5 years ago - 4 comments

#57 - Documentation may be misleading and hashEnabled option does not work

Issue - State: closed - Opened by dvlden over 5 years ago - 6 comments

#56 - Bump acorn from 5.7.3 to 5.7.4

Pull Request - State: closed - Opened by dependabot[bot] over 5 years ago - 2 comments
Labels: dependencies

#55 - Updating CLA agreement link to point to the slack shared agreement

Pull Request - State: closed - Opened by AnujRNair over 5 years ago - 1 comment

#54 - Bump codecov from 3.6.1 to 3.6.5

Pull Request - State: closed - Opened by dependabot[bot] over 5 years ago - 2 comments
Labels: dependencies

#53 - Example on how to use this with CRA + react-app-rewired?

Issue - State: closed - Opened by RIP21 over 5 years ago - 4 comments

#52 - Enable Report-Only

Issue - State: closed - Opened by RenoMeyer over 5 years ago - 9 comments

#51 - Meta tag not included when using index.ejs template

Issue - State: closed - Opened by IoannisPetridis over 5 years ago - 4 comments

#50 - Add hashes to external scripts (CSP3)

Issue - State: open - Opened by Kage-Yami over 5 years ago - 10 comments
Labels: Status: In Review, Status: In Development

#49 - CSP header not visible in network tab

Issue - State: closed - Opened by abadfish over 5 years ago - 1 comment

#48 - using with .cshtml and such

Issue - State: closed - Opened by anvlkv over 5 years ago - 1 comment

#47 - Bump NPM Dependencies

Pull Request - State: closed - Opened by AnujRNair almost 6 years ago - 1 comment

#46 - Add homepage and issues fields to package.json

Pull Request - State: closed - Opened by sibiraj-s almost 6 years ago - 3 comments

#45 - Updated Contributor Agreement

Issue - State: closed - Opened by AnujRNair almost 6 years ago

#44 - Add new output callback function

Pull Request - State: closed - Opened by fcsonline almost 6 years ago - 10 comments

#43 - Updating metadata to point to the correct git url

Pull Request - State: closed - Opened by AnujRNair almost 6 years ago - 1 comment

#42 - package.json metadata missing?

Issue - State: closed - Opened by hugopeixoto almost 6 years ago - 1 comment

#41 - Upgrade package dependencies

Pull Request - State: closed - Opened by AnujRNair about 6 years ago - 1 comment

#40 - Escaped html tag becomes unescaped unexpectedly

Issue - State: closed - Opened by clvs7-gh about 6 years ago - 2 comments

#39 - Ensuring that html webpack plugin hooks are available

Pull Request - State: closed - Opened by AnujRNair about 6 years ago - 1 comment

#38 - Using this plugin with webpack, material-ui withStyles

Issue - State: closed - Opened by brymon68 over 6 years ago - 10 comments

#37 - Update README.md

Pull Request - State: closed - Opened by pierroberto over 6 years ago - 2 comments

#36 - Not generating meta tag

Issue - State: closed - Opened by brymon68 over 6 years ago - 2 comments

#35 - Not getting hashes in meta tag

Issue - State: closed - Opened by RossAddinall over 6 years ago - 12 comments

#34 - Dependency Upgrades, and Readme fix

Pull Request - State: closed - Opened by AnujRNair over 6 years ago - 1 comment

#33 - fix: move babel-jest to development dependencies

Pull Request - State: closed - Opened by hvolschenk over 6 years ago - 3 comments

#32 - babel-jest should live in devDependencies

Issue - State: closed - Opened by MitchLillie over 6 years ago - 2 comments

#31 - Make V3 the new master version of this plugin

Pull Request - State: closed - Opened by AnujRNair over 6 years ago - 1 comment

#30 - disableCspPlugin: true should not modify the template at all

Issue - State: closed - Opened by phil-lgr over 6 years ago - 7 comments

#29 - Fine Grain control for hashes and nonces

Pull Request - State: closed - Opened by AnujRNair over 6 years ago - 1 comment

#28 - If plugin is disabled, we should not modify the html at all

Pull Request - State: closed - Opened by AnujRNair over 6 years ago - 1 comment