Content-security-policy Packages

FORK WITH PROPER WEBPACK 2/3 SUPPORT. A webpack plugin that adds a hash-based strict CSP to help protect your site against XSS attacks.

A Vite plugin that lets SPA applications generate a Content Security Policy (CSP).

A Vite plugin that lets SPA applications generate a Content Security Policy (CSP), relying on hashing for inline scripts and styles.

Security helper methods for front-end development

Enables a hash-based strict Content Security Policy for static HTML files and single page applications.

A webpack plugin that adds a hash-based strict CSP to help protect your site against XSS attacks.

A security gateway for APIs with rate limiting, IP whitelisting, and injection prevention.

Generate fixed nonces for scripts in Gatsby and make them available for the headers.

Content-Security-Policy policy parser

live-server fork that adds Content-Security-Policy (CSP) support (a simple development http server with live reload capability)

A comprehensive toolkit for working with Content Security Policy (CSP) directives in TypeScript.

generates a csp from a JSON file

Middleware for express app for adding Content-Security-Policy header

Helpers for managing Content Security Policy (CSP)

A CSP3 Parser based on W3 specification

Evaluate Content Security Policies for a wide range of bypasses and weaknesses

Provides type information for all CSP directives and related headers' directives; as well as a basic utility funtion that helps convert the typed properties to the header content's policy string.

Manage Certificate Security Policy (CSP) by specifying third party APIs by name

This module provides types and functionality for parsing and stringifying Content Security Policy (CSP).

Enables a hash-based strict Content Security Policy for static HTML files and single page applications.