Support CSP nonce in script and style tags

## Context

The `svelte` Live View component renders `<style>` and `<script>` [tags inline](https://github.com/woutdp/live_svelte/blob/28cd599b368762d250c69a922af9cc1ba9214823/lib/component.ex#L108C10-L108C15). This can cause issues when using a [content security policy](https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP) because it's inline.

## Opportunity

If additional attributes could be added to these tags, it would allow for a more strict CSP header, specifically adding a `nonce-*` attribute, [reference](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy#nonce-).

## Example output

### Header
```
Content-Security-Policy: style-src 'nonce-imk7oIUnJE8r5ResWI1Rq-TsrtoDqZWTVYQIX9Xf9iU' 'self'; script-src 'nonce-8IBTHwOdqNKAWeKl7plt8g==';
```

### Svelte render output

```html
<script nonce="8IBTHwOdqNKAWeKl7plt8g==">/* some head scripts here */</script>
<div id="MyComponent-17506" data-name="MyComponent" data-props="{}" data-live-json="{}" data-slots="{}" phx-update="ignore" phx-hook="SvelteHook" class="">
  <style nonce="imk7oIUnJE8r5ResWI1Rq-TsrtoDqZWTVYQIX9Xf9iU">/* some styles here*/</style>
  {"var1":null}
  <p>component content</p>
</div>
```




Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Support CSP nonce in script and style tags #102

Context

Opportunity

Example output

Header

Svelte render output

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Uh oh!

Support CSP nonce in script and style tags #102

Description

Context

Opportunity

Example output

Header

Svelte render output

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions