Idea Summary
APEX uses a lot of inline scripts, which potentially exposes application to XSS threat. There should be possibility to generate a random nonce for all inline scripts generated by APEX.

https://content-security-policy.com/nonce/

Use Case
Improves application security

Preferred Solution (Optional)
Nonce generation for inline scripts could be a configuration option in application Shared Components → Security Attributes (optionally providing possibility to choose algorithm for nonce generation)