Content Security Policy (CSP) compliance #12
Description
Thank you very much for supporting GetSimpleCMS.
I would like to suggest the compliance of Massive Admin with Content Security Policy.
On easy solution would be to add to all occurrences of inline scripts the attribute nonce="mAdmin" and then add to the Content-Security-Policy header script-src 'nonce-mAdmin'. For example, modifying snippet.php is an easy fix.
Of course that doesn't solve the onclick scripts on the option buttons.
That should be handled with an event listener script already authorized (maybe by hash).
I believe that various inline scripts should get a dedicated js file like script.js.
Of course, the Massive Admin Settings could get simple css only expand-collapse divs.
We should not overcomplicate things and Get 'em Simple :)