neuron-technologies/neuron-web
2
0
Fork 0
Code Issues 1 Pull Requests Actions Packages Projects Releases Wiki Activity

dev → stage: CSP unsafe-eval fix #89

Merged
will.anderson merged 2 commits from dev into stage 2026-05-11 16:45:16 +00:00
Conversation 0 Commits 2 Files Changed 1
+3 -3
will.anderson commented 2026-05-11 16:45:02 +00:00
Owner
Copy Link
Copy Source

Brings in the unsafe-eval CSP fix needed for El native_js() to work.

Brings in the unsafe-eval CSP fix needed for El native_js() to work.
will.anderson added 2 commits 2026-05-11 16:45:05 +00:00
add unsafe-eval to CSP for El runtime native_js() compatibility
Dev — Build & local smoke test / build-smoke (pull_request) Successful in 3m9s
Details
90f7c3655e 
El's native_js() compiles to eval(). checkout-auth.el uses native_js()
to embed the auth logic, so all window globals (showSignIn, initStripe,
etc.) live inside an eval call. Stage CSP was blocking it, leaving the
page with no auth functions defined.
Merge pull request 'add unsafe-eval to CSP (El native_js compatibility)' (#88) from fix/stage-ci-paths into dev
Dev — Build & local smoke test / build-smoke (push) Successful in 3m15s
Details
acca3cfddf 
Merge fix/stage-ci-paths into dev
will.anderson merged commit f4a202e220 into stage 2026-05-11 16:45:16 +00:00
Sign in to join this conversation.
Reviewers
No Reviewers
Labels
No items
No labels
Milestone
No items
No Milestone
Projects
Clear projects
No projects
Assignees
Clear assignees
tim.lingo (Tim Lingo) will.anderson (Will Anderson)
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: neuron-technologies/neuron-web#89
Delete Branch "dev"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?