-
Notifications
You must be signed in to change notification settings - Fork 15
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Non-eval'ing method #6
Comments
It would be possible to feature detect this and fall back to an interpreted implementation:
But it would be preferable not to introduce a performance variable and use a sufficiently well performing, eval-free implementation everywhere. |
Feature detecting probably spams CSP violation reports though, huh? |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
The usage of the
Function
constructor in this module means that mapbox-gl-js upstream cannot satisfy the Content Security Policyunsafe-eval
rule. For CSP-implementing sites, a non-eval'ing method would better.The text was updated successfully, but these errors were encountered: