<meta http-equiv="Content-Security-Policy" content="upgrade-insecure-requests"> | |
This page includes an insecure script that alerts "PASS". Although it is blocked by CSP, it should be upgraded and executed. | |
<script src="http://127.0.0.1:8443/security/contentSecurityPolicy/resources/alert-pass.js"></script> |