Inline styles are blocked by Content Security Policy (csp) [#3548398]

Problem/Motivation

This module adds inline styles, which is not supported when using CSP with the style-src directive.

Content-Security-Policy: (Report-Only policy) The page’s settings would block an inline style (style-src-elem) from being applied because it violates the following directive: “style-src * 'report-sample'”. Consider using a hash ('sha256-dd4J3UnQShsOmqcYi4vN5BT3mGZB/0fOwBA72rsguKc=', requires 'unsafe-hashes' for style attributes) or a nonce.

Proposed resolution

Add a nonce provided by the csp module, if installed.

Issue fork lazy-3548398

Show commands

Start within a Git clone of the project using the version control instructions.

Add & fetch this issue fork’s repository

Or, if you do not have SSH keys set up on git.drupalcode.org:

Add & fetch this issue fork’s repository

3548398-inline-styles-are changes, plain diff MR !25
Check out this branch for the first time

Check out existing branch, if you already have it locally