<!DOCTYPE html>
<html>
<head>
<script src='resources/multiple-iframe-test.js'></script>
<script>
var tests = [
['no', 'script-src https: taco', 'resources/script.js'],
['yes', 'script-src https: \x08', 'resources/script.js'],
['no', 'script-src \'none\'', 'resources/script.js'],
['yes', '\t\t\tscript-src http://127.0.0.1:8000 \t\t https:', 'resources/script.js']
];
</script>
</head>
<body onload="test()">
<p>
None of these scripts should execute even though there are parse errors in the policy.
</p>
Codebase Browser
chromium