If we want to set Content Security Policy in Publify (see https://edgeguides.rubyonrails.org/security.html#content-security-policy-header), some things need to be done: - [x] Remove inline javascript attributes - [x] Remove inline styles - [ ] Remove jQuery, since it contains code that sets inline javascript attributes - [ ] Replace `<script>` tags so it sets nonces
If we want to set Content Security Policy in Publify (see https://edgeguides.rubyonrails.org/security.html#content-security-policy-header), some things need to be done:
<script>tags so it sets nonces