236641 – Refused to load https://c.clarity.ms/c.gif because it does not appear in the img-src directive of the Content Security Policy.

Bug 236641 - Refused to load https://c.clarity.ms/c.gif because it does not appear in the img-src directive of the Content Security Policy.

Summary: Refused to load https://c.clarity.ms/c.gif because it does not appear in the ...

Status:	NEW

Alias:	None

Product:	WebKit
Classification:	Unclassified
Component:	Page Loading (show other bugs)
Version:	Safari 15
Hardware:	Mac (Intel) macOS 12

Importance:	P2 Normal
Assignee:	Nobody

URL:
Keywords:	InRadar

Depends on:
Blocks:

Reported:	2022-02-15 03:50 PST by Cezary Tomczyk
Modified:	2022-02-22 03:51 PST (History)
CC List:	5 users (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Cezary Tomczyk 2022-02-15 03:50:15 PST

Hello.

I've got an issue:

Refused to load https://c.clarity.ms/c.gif because it does not appear in the img-src directive of the Content Security Policy.

when I go to https://www.sitelint.com/

CSP configuration for img-src: img-src 'self' data: blob: https://www.clarity.ms https://c.clarity.ms https://secure.gravatar.com;
Safari: Version 15.3 (17612.4.9.1.8)
OS: macOS Monterey, 12.2.1 (21D62)

Other browsers doesn't report that issue. I am not sure if this is specific to Safari, or CSP rule has been set incorrectly.

Best,
Cezary Tomczyk

Comment 1 Radar WebKit Bug Importer 2022-02-22 03:51:16 PST

<rdar://problem/89285657>