How can an inline style cause security problems?

1

Working with the Twitter API, I received the following message in the browser when attempting to authenticate:

  

Refused to apply inline style because it violates the following   Content Security Policy directive: "style-src link    link . "Either the 'unsafe-inline' keyword, the hash   ('sha256-4Su6mBWzEIFnH4pAGMOuaeBrstwJN4Z3pq / s1Kn4 / KQ ='), or a nonce   ('nonce -...') is required to enable inline execution.

Researching the problem, I found out about the Content Security Policy (CSP) that dictates some security rules, but I did not find something that explains how that would be a problem.

    
asked by anonymous 02.06.2016 / 14:58

0 answers