This is a tag to track and monitor the progress of all tasks that relate to the Content Security Policy and reviews associated with the CSP Policy.
Oct 24 2023
Oct 23 2023
Oct 22 2023
Oct 19 2023
Oct 16 2023
Don't know if it's policy to create separate issues on the same topic, but the csp also has two outdated urls for discord:
cdn.discordapp.com and discordapp.com have been changed to media.discordapp.net
Oct 9 2023
Oct 6 2023
Sep 13 2023
Aug 7 2023
Jun 4 2023
Form has not been filled out. Please reopen once the form has been filled out in its entirety with all questions on the form answered completely. Thanks.
May 21 2023
That sounds good, I'll see if I can download the font later. Thanks! 👍
As a quickfix, why not upload the font onto your wiki in the meanwhile (of course, making sure to attribute copyright to Adobe)?
May 20 2023
Can I fill this in? If so:
May 8 2023
Let's not start here please. What I would say though is that users themselves should decide whether they subscribe to a task, others shouldn't need to decide for them.
Why was OrangeStar removed as a subscriber? Seeing they have been re-added, so that's good, just was confused as they're a MediaWiki Engineer.
OK, well, I have explained it now. Sorry for not catching you before.
Removing me from subscribers? Pretty funny.
@Agent_Isai This form is inapplicable. For example, one of the forms asks about "user data" even though there is no user data anywhere there. It is a static site
No response. Please reopen once details are filled in.
Apr 29 2023
@Naleksuh Please fill out the form in this task. Thanks.
Mar 7 2023
@Reception123 For the root domain naleksuh.com, yes, no-one but me can upload any files there. Some of the subdomains and other domains I have do contain wikis and such that anyone can write to. But I am only asking for naleksuh.com right now
Are you able to give assurances that your website does not and will never collect any kind of personal data that would be covered by the GDPR?
Feb 28 2023
Feb 27 2023
Feb 25 2023
Feb 24 2023
Feb 19 2023
Feb 13 2023
This task has generated a lot of debate and both sides have been considered, as well as observations by the T&S team in the T9252 task. Unfortunately, I have come to the conclusion that the different concerns expressed by T&S in that previous task have not been sufficiently addressed and the circumstances mentioned haven't changed since then. In addition, a CSP whitelist addition requiring so much debate and back and forth is in itself an indication that there are concerns to be had.
Feb 10 2023
There are still issues which prevent many images from showing.
Feb 8 2023
It works, thank you very much.
I have now moved it to img-src. It may take a few minutes to start working though.
It looks like it needs to be added to img-src, as it's still not working:
Since Google has been approved in T7872 and this is part of Google/YouTube approved and added.