You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
{{ message }}
Instantly share code, notes, and snippets.
Mike Samuel
mikesamuel
Programming languages ∩ security. Previously, Google technical infrastructure.
CSP mitigates many client-side security vulnerabilities.
A policy is a whitelist of locations from which JavaScript, Styles, and other content can be loaded.
CSP allows nonces &
hashes to make it easy for a policy to allow
some inline content without allowing all inline content.