Including a Javascript file from github as a script block in Html does not work #1

grasmax · 2023-12-19T07:37:24Z

including from my own webserver works:

<script type="text/javascript" src="http://www.grasmax.de/tacho.js"></script>

including from 'static' folder in django works:

<head>
   ...
    {% load static %}
    <script type="text/javascript" src="{% static 'da4/tacho.js' %}"></script>

including from local folder works:

<script type="text/javascript" src="../../js/tacho.js"></script>

including from github does not work:

	<script type="text/javascript" src="https://github.com/grasmax/g1/blob/main/js/tacho.js"></script>
	<script type="text/javascript" src="https://raw.githubusercontent.com/grasmax/g1/main/js/tacho.js"></script>

including a csv file from github for use with google vega chart works:

https://raw.githubusercontent.com/grasmax/d4/main/Data/heinersdorf_yield_9.csv

Grasmax.de: ok

Github: Fehler

Accept-Ranges:
bytes
Cache-Control:
max-age=0, private, must-revalidate
Content-Encoding:
gzip
Content-Length:
5100
Content-Security-Policy:
default-src 'none'; base-uri 'self'; child-src github.com/assets-cdn/worker/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com cdn.optimizely.com logx.optimizely.com/v1/events api.githubcopilot.com objects-origin.githubusercontent.com .actions.githubusercontent.com wss://.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com support.github.com; img-src 'self' data: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.com/assets-cdn/worker/ gist.github.com/assets-cdn/worker/
Content-Type:
text/plain; charset=utf-8
Date:
Tue, 19 Dec 2023 07:13:26 GMT
Etag:
W/"884ccf8d6e837f6bb415cdf690dd7164"
Referrer-Policy:
no-referrer-when-downgrade
Server:
github.com
Set-Cookie:
_gh_sess=s4LvziE98%2BhB7xDmHZycgD0qKjblrFlwkQWFVwZ3pLqZa%2Fchmi9MDXavT7Ijt6bDHWt5hBW7oQX%2FrKnIDKN5c9CMhaSlJPMKbep0xx0%2FC6gbuIZTSH5n2snUu1mytoEuJK0CaWYTlGPYi0dgSqgJBOaTXXj1pIgekRNzvaMhP5VItiVhpCbQAKrWuMe8v%2FhEJ1gh2CHR1V%2Bvjt48vKtrAgYaBNUbTK9fMQdoZh88wAS%2Ft391DCHjJiimQ0p%2B13QOxyClM%2BCF2%2FvfslHfVLjiUw%3D%3D--c501lhVjzze%2FBY3g--%2BqkSwy25PKS37XU0X8DvSw%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
Set-Cookie:
_octo=GH1.1.2089045291.1702970006; Path=/; Domain=github.com; Expires=Thu, 19 Dec 2024 07:13:26 GMT; Secure; SameSite=Lax
Set-Cookie:
logged_in=no; Path=/; Domain=github.com; Expires=Thu, 19 Dec 2024 07:13:26 GMT; HttpOnly; Secure; SameSite=Lax
Strict-Transport-Security:
max-age=31536000; includeSubdomains; preload
Vary:
X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
X-Content-Type-Options:
nosniff
X-Frame-Options:
deny
X-Github-Request-Id:
BE56:3BADED:586E70F:5996270:65814296
X-Xss-Protection:
0
Request Headers
Console
What's New
Highlights from the Chrome 120 update

The text was updated successfully, but these errors were encountered:

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Including a Javascript file from github as a script block in Html does not work #1

Including a Javascript file from github as a script block in Html does not work #1

grasmax commented Dec 19, 2023

Including a Javascript file from github as a script block in Html does not work #1

Including a Javascript file from github as a script block in Html does not work #1

Comments

grasmax commented Dec 19, 2023