import { createHash } from "node:crypto"; import { normalizeLowercaseStringOrEmpty } from "../shared/string-coerce.js"; const SCRIPT_ATTRIBUTE_NAME_RE = /\s([^\s=/>]+)(?:\s*=\s*(?:"[^"]*"|'[^']*'|[^\s>]+))?/g; /** * Compute SHA-256 CSP hashes for inline `