Content-Security-Policy
HTTP response header
CSP provides a standard method for website owners to declare approved origins of content that browsers should be allowed to load on that website
Header usage statistics
Content-Security-Policy response header information and usage statistics.
|
|
Websites using header Content-Security-Policy |
731,942
|
Percentage of websites that use Content-Security-Policy header
|
6.28% |
Total discovered header values |
217,919 |
Header uses directives |
Yes |
Header values are unique or random |
No |
Most popular in the country |
United States of America
|
Content-Security-Policy
Directives (26 total)
-
base-uri
-
block-all-mixed-content
-
child-src
-
connect-src
-
default-src
-
font-src
-
form-action
-
frame-ancestors
-
frame-src
-
img-src
-
manifest-src
-
media-src
-
object-src
-
plugin-types
-
prefetch-src
-
referrer
-
report-to
-
report-uri
-
sandbox
-
script-src
-
script-src-attr
-
style-src
-
style-src-attr
-
trusted-types
-
upgrade-insecure-requests
-
worker-src