Content Secuirty Policy (CSP) is a mechanism to support third party reporting services and keep your application safe from things such as Cross Site Scripting (XSS). CSP can be thought of as an Allowed List of acceptable sources of content.
If you are using Google Strict CSPv3 there is nothing else for you to do! ChurnZero is fully compliant with this policy.
Content-Security-Policy: |
If you are using a version 1 or 2 policy or you prefer explicit declarations here is ChurnZero's sources list:
Text
connect-src: child-src: media-src: img-src: script-src: style-src:
|
Comments
0 comments
Article is closed for comments.