Content-Secure-Policy HTTP response header

Content-Secure-Policy

HTTP response header

Header usage statistics

Content-Secure-Policy response header information and usage statistics.


Websites using header Content-Secure-Policy	1,463
Percentage of websites that use Content-Secure-Policy header	<0.1%
Total discovered header values	146
Header uses directives	No
Header values are unique or random	No
Most popular in the country	United States

Content-Secure-Policy Directives

Content-Secure-Policy directives value information and usage statistics

Directive	Share	Websites count	Unique Values

Content-Secure-Policy header usage distribution by website rank

Geographical Distribution

Header usage distribution by websites across the globe.

Websites utilizing Content-Secure-Policy

List of websites that use Content-Secure-Policy header

Domain	Country	Rank
farsi.khamenei.ir	Iran	28,962
www.tim.it	Italy	31,513
www.ctt.pt	Portugal	35,635
www.sik.dk	Denmark	62,177
dcc.uchile.cl	Chile	66,841
www.dcc.uchile.cl	Chile	66,841

See full domain list

Common header values

List of top common Content-Secure-Policy header values

Header value	Value prevalence
default-src 'self';	46.48%
frame-ancestors 'none';	15.45%
default-src https: 'unsafe-inline' 'unsafe-eval';	9.09%
default-src 'none'; script-src 'self' www.google-analytics.com ajax.googleapis.com; img-src *; style-src 'self';	2.60%
default-src 'none'; script-src 'self' www.jlnongji.cn; img-src *; style-src 'self' www.jlnongji.cn; frame-ancestors 'self' www.jlnongji.cn 106.12.104.95:9085;	2.19%
default-src 'self'; script-src 'self' www.google-analytics.com ajax.googleapis.com c.imedia.cz www.google.com .gstatic.com .sharethis.com .facebook.net .facebook.com .doubleclick.com .googleadservices.com; img-src ; style-src ;	2.19%
frame-ancestors 'self';	1.71%
default-src 'none'; script-src 'self' fonts.googleapis.com ; img-src *; style-src 'self';	1.16%
default-src 'self'	0.96%
frame-ancestors 'self' www.tru.ca ;	0.68%
default-src 'none'; script-src 'self' www.google-analytics.com .googleapis.com www.googletagmanager.com s.ytimg.com www.youtube.com .googleusercontent.com; img-src *; style-src 'self';	0.68%
frame-ancestors 'self' *.longwood.edu	0.55%
default-src 'self'; img-src 'self'; style-src 'self' 'unsafe-inline'; font-src 'self'; script-src 'self' 'unsafe-inline'; connect-src 'self';	0.48%
base-uri 'self';script-src 'self'; object-src 'none';frame-ancestors 'self';default-src 'self';	0.48%
default-src 'self';frame-ancestors 'none';	0.48%
default-src 'none'; script-src 'self' cdn.iubenda.com cdnjs.cloudflare.com js.hs-analytics.net js.hs-scripts.com js.hscollectedforms.net player.vimeo.com www.google-analytics.com ads.appinf.com; img-src *; style-src 'self' cdnjs.cloudflare.com fonts.googl	0.48%
default-src 'self' *.cgitrade360.com;	0.41%
default-src 'none'; script-src 'self'; img-src *; style-src 'self';	0.41%
default-src 'none'; script-src 'self' purl.org xmlns.com ogp.me w3.org rdfs.org www.google-analytics.com ajax.googleapis.com; img-src *; style-src 'self';	0.41%
base-uri 'self';script-src 'self'; object-src 'none';	0.34%