</>
ProtocolCodes
Todos los códigos Comparaciones Glosario Guías Herramientas
Security

CSP (Content Security Policy)

An HTTP security header that controls which resources a browser is allowed to load for a given page. CSP mitigates XSS and data injection attacks by specifying allowed sources for scripts, styles, images, fonts, and other resources. Directives like script-src, style-src, and default-src define the policy. Violations can be reported to a URI specified by report-uri or report-to directives.

Protocolos relacionados

HTTP

Ver también

XSS (Cross-Site Scripting) Security
HSTS (HTTP Strict Transport Security) Security
Response Header HTTP Concepts
← Volver al glosario