☕️ Insufficient Coffee

Content Security Policy Enabled

Published 2016-01-19

I spent some time over the last week working up a safe Content Security Policy for this website. As part of the testing, I’ve been running the mozilla/csp-logger under the domain to receive CSP error reports. Those seem to have fallen off to being only situations where content is being injected into the page, so I’ve flipped the switch to enable CSP in production.

Please let me know on Twitter if you run into any issues on the site. Thanks!

On a mission to solve information security issues for the whole Internet. That, and drink coffee.

About J.C.

Speaking Engagements


Post Topics

This work is licensed under a Creative Commons Attribution 4.0 International License.