CSP should block Function constructor
Created attachment 92368 [details] Patch
Comment on attachment 92368 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=92368&action=review OK. > Source/JavaScriptCore/runtime/FunctionConstructor.cpp:75 > JSObject* constructFunction(ExecState* exec, JSGlobalObject* globalObject, const ArgList& args, const Identifier& functionName, const UString& sourceURL, int lineNumber) One could also just have added an enum argument to this call.
Thoughts from ggaren and/or sam would be useful. I'll leave this patch up here for a bit in case they'd like to comment.
LGTM.
(In reply to comment #4) > LGTM. Thanks for taking a look.
Created attachment 92863 [details] Patch for landing
Comment on attachment 92863 [details] Patch for landing Clearing flags on attachment: 92863 Committed r86100: <http://trac.webkit.org/changeset/86100>
All reviewed patches have been landed. Closing bug.