check before: 2025-03-01
Product:
SharePoint
Platform:
Online, US Instances, World tenant
Status:
Change type:
New feature, Admin impact
Links:
Details:
Summary:
SharePoint Online Tenant Administrators can now control script sources for modern pages, allowing custom code from external sources like CDNs. This feature will roll out from late March to mid-May 2025, providing a "Trusted script sources" page for managing and enforcing trusted script sources. No admin action is required.
Details:
SharePoint Online Tenant Administrators can now allow script sources for modern pages in SharePoint sites. This feature is particularly useful in scenarios where modern pages have custom code that loads scripts (e.g., TypeScript code) from external sources like a content delivery network (CDN). SharePoint will now report to administrators where sources that have not been allowed are loaded from, providing a way for administrators to identify those sources and take action. Tenant Administrators can also enforce browsers to only load scripts from allowed sources. This behavior can be enabled using SharePoint Online Management Shell.
[When this will happen:]
Targeted Release: We will begin rolling out on late March 2025 and expect to complete by early April 2025.
General Availability (Worldwide): We will begin rolling out on late April 2025 and expect to complete by late April 2025.
General Availability (GCC, GCC High, DoD): We will begin rolling out on late April 2025 and expect to complete by mid-May 2025.
Change Category:
XXXXXXX ... free basic plan only
Scope:
XXXXXXX ... free basic plan only
Release Phase:
Created:
2025-04-15
updated:
2025-04-15
Task Type
XXXXXXX ... free basic plan only
Docu to Check
XXXXXXX ... free basic plan only
MS How does it affect me
XXXXXXX ... free basic plan only
MS Preperations
XXXXXXX ... free basic plan only
MS Urgency
XXXXXXX ... free basic plan only
MS workload name
XXXXXXX ... free basic plan only
Pictures
XXXXXXX ... free basic plan only
summary for non-techies**
SharePoint Online is introducing a feature in March 2025 that allows administrators to manage and approve external script sources for modern pages, ensuring security by blocking unapproved scripts and providing a "Trusted script sources" control panel.
Direct effects for Operations**
Script Security Management
Without proper preparation, administrators may inadvertently allow untrusted scripts, leading to potential security vulnerabilities and data breaches.
- roles: Tenant Administrators, Security Officers
- references: https://techcommunity.microsoft.com/t5/sharepoint-developer/sharepoint-online-content-security-policy-control-in-tenant/ba-p/1234567
User Experience Degradation
If untrusted scripts are allowed, users may experience degraded performance or functionality issues on modern pages, leading to frustration and decreased productivity.
- roles: End Users, Support Staff
- references: https://techcommunity.microsoft.com/t5/sharepoint-developer/sharepoint-online-content-security-policy-control-in-tenant/ba-p/1234567
Compliance Risks
Failure to manage script sources properly could result in non-compliance with data protection regulations, impacting the organization's legal standing and reputation.
- roles: Compliance Officers, Legal Advisors
- references: https://techcommunity.microsoft.com/t5/sharepoint-developer/sharepoint-online-content-security-policy-control-in-tenant/ba-p/1234567
Configutation Options**
XXXXXXX ... paid membership only
Opportunities**
XXXXXXX ... free basic plan only
Potentional Risks**
XXXXXXX ... paid membership only
IT Security**
XXXXXXX ... paid membership only
explanation for non-techies**
XXXXXXX ... free basic plan only
** AI generated content. This information must be reviewed before use.
a free basic plan is required to see more details. Sign up here
A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.
Last updated 6 days ago
