I am securing my site with CSP and wondering if your theme & plugin is using inline scripting?
If so would it possible to remove it in future releases to make more CSP compatible?
(Its no recommended to use unsafe-inline with CSP)
Why to avoid inline Javascript?
*It’s not recommended to inline your javascript since you can’t cache them.
*Maintainability!
* Optimization and minification
* Cross Site Scripting (XSS)