You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
While #1059 claims the disableStyleInjection works. However it does not
Even after sending 'core' | 'true' as values, the library still injects styles, causing issues with CSP. Only after adding 'unsafe-inline' the errors go away, which seems to defeat the purpose of CSP
Version of Package
^5.25.2
To Reproduce
Add CSP to webpage
Send disableStyleInjection = 'core' or true
Expected behavior
We should not add 'unsafe-inline' to CSP
The text was updated successfully, but these errors were encountered:
disableStyleInjection should work as expected. The error you're seeing is probably due to using import "react-tooltip/dist/react-tooltip.css";.
How are you injecting CSS styles into your application? Instead of importing the react-tooltip.css file, you might need to copy its content manually to your own CSS files (try copying from node_modules/react-tooltip/dist/react-tooltip.css).
Bug description
While #1059 claims the disableStyleInjection works. However it does not
Even after sending 'core' | 'true' as values, the library still injects styles, causing issues with CSP. Only after adding 'unsafe-inline' the errors go away, which seems to defeat the purpose of CSP
Version of Package
^5.25.2
To Reproduce
Add CSP to webpage
Send disableStyleInjection = 'core' or true
Expected behavior
We should not add 'unsafe-inline' to CSP
The text was updated successfully, but these errors were encountered: