Highlight your CSP policy

Posted on 19 February 2016 in misc • Tagged with csp

It is common scenario when you need to show Content Security Policy example to the developers. If you use Highlight.js (syntax highlighter written in JavaScript) then from the next release it will be also possible to highlight CSP policy syntax. Like this one:

Content-Security-Policy:
    default-src 'self';
    style-src 'self' css …

Continue reading

CSP Reporter

Posted on 13 December 2014 in misc • Tagged with csp

In a nutshell it is a parser for CSP (Content Security Policy) reports. Main purpose is to create easy to read and understand report from big size logs. You can get source code from GitHub


Continue reading

CSP Tester

Posted on 13 December 2014 in misc • Tagged with csp

This extension for Chromium based browsers helps web masters to test web application functionality with Content Security Policy version 2.0 implemented. You can install CSP Tester from Chrome Web Store or get source code from GitHub


Continue reading

CSP Tester is available in Chrome Web Store

Posted on 30 November 2014 in misc • Tagged with csp

I am glad to announce that CSP Tester is available now in Chrome Web Store. So it is much easier to install it!


Continue reading

CSP Reporter - tool to analyse CSP logs

Posted on 07 December 2013 in misc • Tagged with csp

There are two things to facilitate implementation of Content Security Policy (CSP). The first one is special directive called report-uri which specifies a URI to which the browser sends reports (in JSON format) about policy violation. The second one is special mode Report-Only when browser only sends violation reports to …


Continue reading