Anyone know the technical details of how @WIRED collected, parsed and used their copious CSP violation reports?
-
-
[shameless plug] https://blogs.dropbox.com/tech/2015/09/on-csp-reporting-and-filtering/ … will reduce the pain a bit but not fully
-
on fresh reading this is an interesting tidbit:pic.twitter.com/720SrA54tY
-
@zeeg feature request for Sentry CSP handling: an endpoint/registration setting where I include CSP policy hash out of band. -
If violation report's included policy does not hash to the same one, throw away/flag as noise.
-
makes sense. We could also just let you throw them away based on version of your app
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.