You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This makes it possible to fetch speculation rules. In particular:
the Sec-Fetch-Dest value speculationrules should be specified
the CSP integration should be explicit that the script-src directive is respected (but not script-src-elem or script-src-attr) for rule sets externally fetched via the header
security considerations should mention that mixed content blocking and CSP apply
The text was updated successfully, but these errors were encountered:
This makes it possible to fetch speculation rules. In particular:
Sec-Fetch-Destvaluespeculationrulesshould be specifiedscript-srcdirective is respected (but notscript-src-elemorscript-src-attr) for rule sets externally fetched via the headerThe text was updated successfully, but these errors were encountered: