4

I am having trouble migrating my chrome extension from MV2 to MV3. I read through the docs and still don't understand the Content Security Policy aspect of it.

I want to migrate this piece of the manifest.json file:

"content_security_policy": "script-src 'self' https://www.google-analytics.com https://cdn.firebase.com https://apis.google.com https://www.gstatic.com https://kit.fontawesome.com/; object-src 'self'"

So far I have this:

"content_security_policy": {
   "extension_pages": "script-src 'self'; object-src 'self'"
}

But what about the links

https://www.google-analytics.com https://cdn.firebase.com https://apis.google.com https://www.gstatic.com https://kit.fontawesome.com/
Yashvardhan Khaitan
  • 133
  • 1
  • 2
  • 8
  • 1
    @Bravo No worries! I guess I need to continue researching while waiting for a response here – Yashvardhan Khaitan Jul 29 '21 at 22:08
  • 4
    Manifest v3 [prohibits the loading external scripts](https://developer.chrome.com/docs/extensions/mv3/intro/mv3-migration/#remotely-hosted-code) in the `script-src` directive - all external scripts must be included in the application itself. – granty Aug 05 '21 at 10:21
  • Any solution found for V3 on CSP ? – SG_Bazel Nov 15 '22 at 14:05

0 Answers0