Update Note on Request Destination / CSP directive

[evilpie]

https://fetch.spec.whatwg.org/#concept-request-destination shows the CSP directive for a specific destination. I think that list needs to be updated to Content Security Policy Level 3. For example the destination "script" should now be "script-src-elem". (ref https://w3c.github.io/webappsec-csp/#effective-directive-for-a-request)

[Harsh3363]

can u assign this to me

[sahilm-10]

@evilpie Can you assign this to me. I am a beginner to Open Source

[annevk]

@Harsh3363 @sahilm-10 we don't assign issues. The way to "take" an issue is to provide a PR for it as per the instructions in the README.

[Kaggrov]

Hi
I have raised a PR as a fix for this issue , PR #1735 .
Please review will be happy to make changes and contribute.

[Bhumit9416]

Hi! 👋
Thanks for highlighting this — updating the Fetch spec’s destination mapping to align with CSP Level 3 makes perfect sense. The distinction between script-src and script-src-elem (and similar updates for style, img, etc.) is important for accuracy and consistency with modern browser behavior.

I’ve reviewed the referenced PR and would be happy to help test, review, or iterate on the changes if needed. Looking forward to supporting improvements to spec clarity and security guidance!

— Bhumit Mittal

[IDevSharma1]

Is this issue still available? I would like to work on it.