Is it safe to use font-src with data: in a Content Security Policy?
I’m currently experiencing an issue where base64 encoded fonts are being blocked by CSP on my website (note that I replaced the base64 with abcdefg in this example:
Refused to load the font ‘data:font/woff2;base64,abcdefg///abcdefg’ becaus… Continue reading Is it safe to use font-src with data: in a Content Security Policy?