CSP Builder

Build secure Content Security Policy headers visually

Security Score

100

Strong security posture

Policy Mode

Log violations without blocking

Directives

default-src
1
script-src
1
style-src
1
img-src
2
font-src
1
connect-src
1
media-src
1
object-src
1
frame-src
1
frame-ancestors
1
base-uri
1
form-action
1
manifest-src
1
worker-src
1
prefetch-src
1

default-src

Default policy for all content types

'self'

Generated CSP

Content-Security-Policy: default-src 'self'