Do not use eval function in piwik.js (for CSP) · Issue #5960 · matomo-org/matomo · GitHub
Skip to content

Do not use eval function in piwik.js (for CSP) #5960

New issue
New issue
Closed
Closed
Do not use eval function in piwik.js (for CSP)#5960
Assignees
tsteur
Labels
EnhancementFor new feature suggestions that enhance Matomo's capabilities or add a new report, new API etc.
Milestone
 
2.15.0
@ondrejmirtes

Description

@ondrejmirtes
ondrejmirtes
opened on Aug 9, 2014

In order to implement CSP on my website, I disallowed 'unsafe-eval' in script-src directive. But I cannot track visitors with Piwik, because piwik.js tracking code contains call to eval function twice.

Can you consider rewriting the code so it does not use eval? (Which is a bad idea nevertheless.)

Metadata

Metadata

Assignees

Labels

EnhancementFor new feature suggestions that enhance Matomo's capabilities or add a new report, new API etc.

Type

No type

Projects

No projects

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions