Allowing eval in Electron?

I would like to write a small Electron application using Two.js but I realized Electron doesn't like anyone to use eval.

If I do this in renderer.js:

let u = eval('1 + 1');

I get this issue:

Uncaught EvalError: Refused to evaluate a string as JavaScript because 'unsafe-eval' is not an allowed source of script in the following Content Security Policy directive: "script-src 'self'".

Of course I enabled allowRunningInsecureContent: true in the webPreferences.

Is there any way of running packages that use eval in Electron?

Solution

You can simply add this to the <head> of your loaded html

<meta http-equiv="Content-Security-Policy" content="default-src 'self'">

The issue comes not from electron but I assume you're running the electron application via a local web server, in that case you also need to provide the right configuration for the CSP.

Chunk downloading of the big files right to the hard drive
My custom CSS transition animation is not working on hover after I added AOS JS library
how to get the Google analytics client ID
Toggle vue-multiselect close/open on button click
Best way to filter an objects's properties for data
Passing function with arguments as a prop and invoking it internally in React
Outlook calendar don't render with FullCalendar
Is there a way to validate and allow only https url's using .isUri i.e. without using Regex in JavaScript?
How to clear react native webview cookies?
Skipping a test in Cypress conditionally
How can I get all the HTML in a document or node containing shadowRoot elements
Typescript: No index signature with a parameter of type 'string' was found on type '{ "A": string; }
Retain Twitter Bootstrap Collapse state on Page refresh/Navigation
How to get "Results per Row" (from a 'clicked entry' off a "dropdown menu") to show up correctly?
Is there is a C# function which is similar to .Map() in JavaScript?
How to trigger SVG render same as manual DOM edit in Chrome using JS?
How do I test a Node.JS Script that is not a module and runs as soon as it's called?
Set element width based on a string that is not in the element
Testing JavaScript Written for the Browser in Node JS
Where are the trailing commas coming from in these radio buttons?
How to verify a signature from the Phantom wallet?
How to get the value of a Google Chrome flag using Javascript
event.preventDefault cannot block clipboard paste in chatgpt.com prompt box
Should I use ref or findDOMNode to get react root dom node of an element?
Disable button for 5 seconds with different label and change after it
JavaScript - Get all but last item in array
React-Redux: Should all component states be kept in Redux Store
Is it possible to use Closure Compiler ADVANCED_OPTIMIZATIONS with jQuery?
Capture selected option returns not defined instead
Uncaught TypeError: matchExpr[type].exec is not a function