Content Security Policy Generator

Generate Content-Security-Policy headers.

Runs in your browser All processing happens locally. Your data never leaves this device.

Build a Content-Security-Policy. Common keywords: 'self' 'none' 'unsafe-inline' 'unsafe-eval' 'strict-dynamic' data: https: blob:

About this tool

Overview, usage, examples, FAQ, and notes will be provided here per language.