fix: make modal more CSP-friendly #1058

bendemboski · 2024-12-05T19:32:52Z

Description

Setting up mouseover and mouseout event listeners using the onmouseover and onmouseout attributes prevents turning off unsafe-inline in the page's content security policy. This commit changes the event listeners to use addEventListener instead.

Type of Change

Bug fix (non-breaking change which fixes an issue)

Checklist

My code follows the style guidelines of this project ( Run yarn lint to check)
I have commented my code, particularly in hard-to-understand areas
I have made corresponding changes to the documentation (if applicable)
My changes generate no new warnings or errors
I have added tests that prove my fix is effective or that my feature works (if applicable)
New and existing unit tests pass locally with my changes

How should be tested? (Manual or Automated Tests)

Manual tests: I have tested this changes manually.

Setting up `mouseover` and `mouseout` event listeners using the `onmouseover` and `onmouseout` attributes prevents turning off `unsafe-inline` in the page's content security policy. This commit changes the event listeners to use `addEventListener` instead.

bendemboski requested review from carla-at-wiris, jgonzalez-at-wiris, usantos-at-wiris, xjiang-at-wiris and ncornaglia-at-wiris as code owners December 5, 2024 19:32

bendemboski force-pushed the modal-csp branch from de3548f to 018f118 Compare December 6, 2024 21:37

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

fix: make modal more CSP-friendly #1058

fix: make modal more CSP-friendly #1058

Uh oh!

bendemboski commented Dec 5, 2024

Uh oh!

Uh oh!

fix: make modal more CSP-friendly #1058

Are you sure you want to change the base?

fix: make modal more CSP-friendly #1058

Uh oh!

Conversation

bendemboski commented Dec 5, 2024

Description

Type of Change

Checklist

How should be tested? (Manual or Automated Tests)

Uh oh!

Uh oh!