speculation-rules/prerender/resources/csp-script-src-self.html - external/github.com/web-platform-tests/wpt - Git at Google

 <!DOCTYPE html>

 <head>
   <!-- disallow inline script -->
   <meta http-equiv="Content-Security-Policy" content="script-src 'self' 'nonce-allowed-inline-script-for-test'">
 </head>
 <script src="/common/utils.js"></script>
 <script src="/resources/testharness.js"></script>
 <script src="/resources/testharnessreport.js"></script>
 <script src="utils.js"></script>
 <script src="csp-script-src.js"></script>
 <script nonce="allowed-inline-script-for-test">
   const searchParams = new URLSearchParams(location.search);
   writeValueToServer(searchParams.get('key'), "csp is ignored unexpectedly");
 </script>
	<!DOCTYPE html>

	<head>
	<!-- disallow inline script -->
	<meta http-equiv="Content-Security-Policy" content="script-src 'self' 'nonce-allowed-inline-script-for-test'">
	</head>
	<script src="/common/utils.js"></script>
	<script src="/resources/testharness.js"></script>
	<script src="/resources/testharnessreport.js"></script>
	<script src="utils.js"></script>
	<script src="csp-script-src.js"></script>
	<script nonce="allowed-inline-script-for-test">
	const searchParams = new URLSearchParams(location.search);
	writeValueToServer(searchParams.get('key'), "csp is ignored unexpectedly");
	</script>