CSP

A CSP (Content Security Policy) is used to detect and mitigate certain types of website related attacks like {{Glossary("Cross-site_scripting")}}, clickjacking and data injections.

The implementation is based on an {{Glossary("HTTP")}} header called {{HTTPHeader("Content-Security-Policy")}}.

See also

• Content Security Policy documentation
• Content Security Policy on Wikipedia