Next.js use of globalThis causes CSP false positives without unsafe-eval

### Describe the bug

The solution to #3067 (#2015 ) first tries the approach that would be blocked by CSP, then falls back to an approach that is not blocked.

This causes a large number of false positive CSP reports to be generated, even when there is no threat and no impact to functionality.

Could the solution not try the safer version first, then the unsafe version if that fails? Or repurpose / adopt the work done in #3179 ?

### Reproduction

N/A

### Used Package Manager

npm

### System Info

```shell
N/A
```

### Validations

- [x] Read the [docs](https://github.com/module-federation/core).
- [x] Read the [common issues list](https://github.com/module-federation/core/issues).
- [x] Check that there isn't [already an issue](https://github.com/module-federation/core/issues) that reports the same bug to avoid creating a duplicate.
- [x] Make sure this is a Module federation issue and not a framework-specific issue.
- [x] The provided reproduction is a [minimal reproducible example](https://stackoverflow.com/help/minimal-reproducible-example) of the bug.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Next.js use of globalThis causes CSP false positives without unsafe-eval #3772

Describe the bug

Reproduction

Used Package Manager

System Info

Validations

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Uh oh!

Next.js use of globalThis causes CSP false positives without unsafe-eval #3772

Description

Describe the bug

Reproduction

Used Package Manager

System Info

Validations

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions