Change
Avoid the style attribute in HTML and in JavaScript
Issue description
This would require an 'unsafe-inline' in 'style-src'.
Developer comments
%style.setProperty% comes in handy and does not require an unsafe policy.
Modernizr uses style injection in order to detect touch devices. There is vendor specific %touch-enabled% prefixes which are tried and then the reflection of the rule in the affected dummy element is checked to confirm touch events. But this only happens when the DOM does not already confirm touch events, so uncommenting the problematic section in Modernizr for now.
Removed the touchevents capability from Modernizr and going for hover media query.
|
Work sessions2
Start |
2021-08-11T20:33:51
|
End |
2021-08-11T22:31:48
|
Participant |
Robert Cerny
|
Start |
2021-08-12T08:49:32
|
End |
2021-08-12T09:35:35
|
Participant |
Robert Cerny
|
|
We are sorry
This page cannot be displayed in your browser. Use Firefox, Opera, Safari, or Chrome instead.