I deployed keycloak and scanned it using OWASP ZAP and detected below CSP.
CSP: script-src unsafe-inline
CSP: script-src unsafe-eval
CSP: style-src unsafe-inline
I there a way to resolve this? or it is needed by keycloak to run properly?
Thanks
This is a community forum. Questions like this are for the maintainers, which can be reached by filing an issue or starting a discussion on the Keycloak GitHub site: GitHub - keycloak/keycloak: Open Source Identity and Access Management For Modern Applications and Services