Add disable-javascript-urls CSP directive
Created attachment 92471 [details] Patch
Comment on attachment 92471 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=92471&action=review > Source/WebCore/page/ContentSecurityPolicy.h:91 > + bool m_disableJavaScriptURLs; Should we note here that it's not in the spec?
Created attachment 92631 [details] Patch for landing
I added a note about this being an experimental feature that should be removed if not adopted by the working group.
Comment on attachment 92631 [details] Patch for landing Clearing flags on attachment: 92631 Committed r85975: <http://trac.webkit.org/changeset/85975>
All reviewed patches have been landed. Closing bug.