reply on: SN release: NWC & LNBits for sending, LND for autowithdraw, NSFW labels, & more \ stacker news ~meta

pull down to refresh

3234 sats \ 8 replies \ @saunter 13 Feb \ parent \ on: SN release: NWC & LNBits for sending, LND for autowithdraw, NSFW labels, & more meta

Uncaught (in promise) EvalError: Refused to evaluate a string as JavaScript because 'unsafe-eval' is not an allowed source of script in the following Content Security Policy directive: "script-src 'self' 'wasm-unsafe-eval' 'inline-speculation-rules'".

at bakeCollection (content.7f229555.js:2064:98610)
at Object.u (content.7f229555.js:2064:93234)
at Object.g [as call] (content.7f229555.js:2064:93437)
at es.o [as emit] (content.7f229555.js:2064:85238)
at es.stop (content.7f229555.js:17:30157)
at es.eoseReceived (content.7f229555.js:17:31755)
at content.7f229555.js:17:8787
at Array.forEach (<anonymous>)
at T.eoseReceived (content.7f229555.js:17:8754)
at content.7f229555.js:17:11970

0 sats \ 7 replies \ @k00b OP 13 Feb

@ekzyis looks like the nostr library violates CSP

0 sats \ 6 replies \ @ek 13 Feb

Mhh, interesting, I tested NWC when we launched and I could generate NWC requests 🤔

0 sats \ 5 replies \ @k00b OP 13 Feb

I think it might be that the library uses wasm, some browsers probably don't support it, and we allow unsafe-eval-wasm but not unsafe-eval

0 sats \ 0 replies \ @TonyGiorgio 14 Feb

Oh, you'll have issues with graphene's browser and people running lockdown mode on iOS.

That's pretty crap that it's pulling in web assembly for whatever reason. There's really no need.

0 sats \ 3 replies \ @ek 13 Feb

Ah. @saunter, which browser are you using?

0 sats \ 2 replies \ @saunter 14 Feb

Arc

0 sats \ 1 reply \ @TonyGiorgio 14 Feb

Hmm I used it on arc without a problem.

0 sats \ 0 replies \ @ek 14 Feb freebie

Which versions are both of you running? Is this maybe the problem?

It seems like Arc is macOS only so can't test myself :/