Help
cancel
Showing results for 
Search instead for 
Did you mean: 
Ground Controller Lvl 1
Message 1 of 16

Refused to load the font '<URL>' because it violates the following Content Security Policy directive

Sorry not sure if this is the place to report, but 

 

Github is broken because of CSP. 

 

 

15 Replies
Ground Controller Lvl 1
Message 2 of 16

Re: Refused to load the font '<URL>' because it violates the following Content Security Policy

github issue.png

Ground Controller Lvl 1
Message 3 of 16

Re: Refused to load the font '<URL>' because it violates the following Content Security Policy

I am experiencing a similar issue

 

github-issue.png

Ground Controller Lvl 1
Message 4 of 16

Re: Refused to load the font '<URL>' because it violates the following Content Security Policy

it seems that the issue is now fixed

Ground Controller Lvl 1
Message 5 of 16

Re: Refused to load the font '<URL>' because it violates the following Content Security Policy

Screenshot 2019-01-03 at 2.54.26 PM.pngstill not fixed for me it seems =(

Copilot Lvl 2
Message 6 of 16

Re: Refused to load the font '<URL>' because it violates the following Content Security Policy

Are you guys in SE Asia? I am having trouble with githubassets.com too.

Copilot Lvl 2
Message 7 of 16

Re: Refused to load the font '<URL>' because it violates the following Content Security Policy

... and we're back.

Commander Lvl 3
Message 8 of 16

Re: Refused to load the font '<URL>' because it violates the following Content Security Policy

Hi everyone,

 

That seemed like a  hiccup in GitHub's system. For me it works fine right now, and if you're expierencing issues with the GitHub platform like this you can, after checking https://www.githubstatus.com/ , contact GitHub Support.


- Mark
Ground Controller Lvl 1
Message 9 of 16

Re: Refused to load the font '<URL>' because it violates the following Content Security Policy

It seems there's a difference in the encryption protocols between Github.com and github.githubassets.com.

Github assets is replying with a TLSV1 whereas Gtihub.com is TLSv1.2. This seems to be causing a security issue with some proxies (our corporate one included) and will not allow anything hosted on github.githubassets.com to be loaded.

 

2019-01-07 10_49_38- Ethernet Connection.png

Commander Lvl 3
Message 10 of 16

Re: Refused to load the font '<URL>' because it violates the following Content Security Policy

Good research! This should be logged by moderators soon, so they can internally consider updating the protocol GitHub assets uses.


- Mark