Good day HN! I recently had a need to write a simple HTML static site that needed some JS functionality. I wanted to use inline handlers, but didn't like how they were 'unsafe inline', so I made this simple Python3 script to convert all inline handlers to a safer external script, with the CSP hash output to boot!
Check it out, maybe you can use it, maybe it can help you write HTML easily, but then harden it to make it more secure, so you don't have to serve it with 'unsafe inline' CSP header! :)
Check it out, maybe you can use it, maybe it can help you write HTML easily, but then harden it to make it more secure, so you don't have to serve it with 'unsafe inline' CSP header! :)