I have researched this a bit and am familiar with the security reasoning, etc. But is has their been any method created for doing this yet? I have an anti-ad block script I would like to run and it’s suppose to be inserted prior to </body> and adding it to the theme yields nada. I assume the security routines are removing it? Either way it’s not loading for me in the </body> or “Footer” options in the theme customization area.
Fyi this is just pure js and not a remote link to a file, etc.
Okay… so there is this exception/error in the JS console:
Uncaught EvalError: Refused to evaluate a string as JavaScript because ‘unsafe-eval’ is not an allowed source of script in the following Content Security Policy directive: "script-src…
So it there a way to make “eval” safe or authorize this particular usage?