d33fec9c3f
* Add Content-Security-Policy-Report-Only: script-src 'self' 'nonce-' policy * Use @data-on-click-this to attach inline click event handlers which expect being called with 'this' Only handle ones that don't return a value. * Use @data-on-click to attach inline click event handlers with no args and no return value * Use @data-on-click-true to attach inline click event handlers with 'true' as the only argument * Enforce a script-src CSP on views without inline JS * Convert some onchange attributes to data-on-change |
||
---|---|---|
.. | ||
config.php | ||
control_functions.php | ||
export_functions.php | ||
functions.php | ||
timeline_functions.php |