SRI report

sri-report.js

var observer = window.MutationObserver || window.WebKitMutationObserver;
if (observer) {
  new MutationObserver(function(mutations) {
    mutations.forEach(function(mutation) {
      mutation.addedNodes.forEach(processNode);
    });
  }).observe(document, { childList: true, subtree: true });
}

var processNode = function(node) {
  var tagName = node.tagName ? node.tagName.toLowerCase() : '';
  if (tagName === 'script' || tagName === 'link') {
    if (!node.onerror) {
      node.onerror = function(error) {
        var json = {
          "csp-report": {
            "document-uri": window.top.location.href,
            "referrer": "",
            "blocked-uri": node.hasAttribute('src') ? node.getAttribute('src') : node.getAttribute('href'),
            "violated-directive": "invalid-integrity",
            "original-policy": "require-sri-for script"
          }
        };
        var xhr = new XMLHttpRequest();
        xhr.open('POST', 'https://mydomain.report-uri.com/r/d/csp/enforce', true);
        xhr.setRequestHeader('content-type', 'application/csp-report');
        xhr.send(JSON.stringify(json));
      }
    }
  }
}