155773 2016-03-22 15:51:45 -0700 CSP: Log deprecation warning for frame-src directive 2022-03-25 12:50:41 -0700 1 1 1 Unclassified WebKit WebCore Misc. WebKit Local Build All All RESOLVED INVALID https://bugs.webkit.org/show_bug.cgi?id=155777 P2 Normal --- 1 dbates webkit-unassigned bfulgham oldest_to_newest 1177173 0 dbates 2016-03-22 15:51:45 -0700 The frame-src directive has been deprecated since CSP 2.0, <https://www.w3.org/TR/2015/CR-CSP2-20150721/#directive-frame-src>. Its replacement is the child-src directive. We should consider showing a console warning message when a Content Security Policy has a frame-src directive. 1177174 1 dbates 2016-03-22 15:52:45 -0700 Maybe we should log a message of the form: The frame-src directive is deprecated. Use the child-src directive instead. 1855207 2 bfulgham 2022-03-25 12:50:25 -0700 Ironically, the frame-src directive is no longer deprecated, and child-src is!