You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I've seen that you are using inline style (e.g. ngStyle) in your Project. As I understood, this leads to a security risk. During the use of certain CSP-headers, the browser blocks the usage of this style definitions anyways. Is there a way to switch this inline-css into css-classes?
The text was updated successfully, but these errors were encountered:
So whenever angular fixes this CSP issue, I can adapt the library to work.
But all of the above is a theoretical security issue in angular, which they have mitigations, if used properly there is no security issue. Look at https://angular.io/api/platform-browser/DomSanitizer
On how can be solved not to use ngStyle:
Without testing and researching, I think maybe it's possible to introduce some classes for position and use CSS variables, that can be modified from JS world that modify the position of each item. But this is just an idea without testing or researching options.
So till angular fixes they're stuff don't think is anything we can do, besides migrating to another library/framework.
Hi,
I've seen that you are using inline style (e.g.
ngStyle
) in your Project. As I understood, this leads to a security risk. During the use of certain CSP-headers, the browser blocks the usage of this style definitions anyways. Is there a way to switch this inline-css into css-classes?The text was updated successfully, but these errors were encountered: