Got a lot of "effectiveDirective default-src" 

Hi there,

i got a lot of csp reportings like following:
```
{
  "blockedURL": "<app-domain>",
  "columnNumber": 11961,
  "disposition": "enforce",
  "documentURL": "<app-domain>",
  "effectiveDirective": "default-src",
  "violatedDirective": "default-src",
  "lineNumber": 1,
  "originalPolicy": "default-src 'none'; script-src 'self' 'wasm-unsafe-eval'; connect-src 'self' data:; img-src 'self' data: blob:; upgrade-insecure-requests; style-src 'self' 'unsafe-inline'; font-src 'self' data:; frame-src; manifest-src 'self'; worker-src 'self'; child-src 'self'; media-src 'self' data:;",
  "referrer": "",
  "sourceFile": "<app-domain>.js",
  "statusCode": 200,
  "sample": null,
  "type": "csp-report"
}
```

Mine CSP sets `default-src 'none'` and then whitelists a lot of things (i redacted the domains). Now i´m getting a lot of csp-violations (over the reporting api) where `effectiveDirective` is `default-src`. Does anybody have a idea whats happing there? 

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Got a lot of "effectiveDirective default-src" #98

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Got a lot of "effectiveDirective default-src" #98

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions