Thanks for the heads up, a similar ticket has been closed as wontfix, because it isn't compatible with CSP: https://code.djangoproject.com/ticket/13978
While I'm all against inline scripts, I have a use case which seems be legitimate: https://github.com/yourlabs/django-autocomplete-light/pull/733/files#diff-469b501dd1f427cfe68aac4d27f28df3R84 Basically, we render a `<script type="text/dal-forward-conf">json object dump here</script>` next to the widget and use that to configure the script for that widget. IMHO, the ideal solution would be to be able to place this script tag in `{{ form.media }}` rather than next to the HTML widget. Am I missing any CSP concern here ? -- You received this message because you are subscribed to the Google Groups "Django developers (Contributions to Django itself)" group. To unsubscribe from this group and stop receiving emails from it, send an email to django-developers+unsubscr...@googlegroups.com. To post to this group, send email to django-developers@googlegroups.com. Visit this group at https://groups.google.com/group/django-developers. To view this discussion on the web visit https://groups.google.com/d/msgid/django-developers/CALC3Kac1x61Ra45cnW5ScAj39BzCah5PLpwF7R6eVu7zirKP8g%40mail.gmail.com. For more options, visit https://groups.google.com/d/optout.
