Content-security-policy-builder NPM

Content Security Policy builder

Take an object and turn it into a Content Security Policy string.

It can handle a lot of things you can you throw at it; camelCased or dash-separated directives, arrays or strings, et cetera.

Usage:

const builder = require("content-security-policy-builder");

// default-src 'self' default.com; script-src scripts.com; whatever-src something; object-src
builder({
  directives: {
    defaultSrc: ["'self'", "default.com"],
    scriptSrc: "scripts.com",
    "whatever-src": "something",
    objectSrc: true,
  },
});

This module is considered "complete". I expect to continue maintenance if needed, but I don't plan to add features or make breaking changes.

security content security policy csp builder

hybrid-build-kit ipa-niw @pageboard/core @shopify/hydrogen @tonysusi/vapid @staticdeploy/core monument lcars-library-node recyclops-driver-app spa-prod webpack-config-github win-server-core tasty @heat/s3-deploy @heat/s3-sync

1 day ago

2 years ago

5 years ago

6 years ago