Content Security Policy Generator
Automatically scan your application and generate a proper Content Security Policy (CSP) header that balances security with functionality, preventing overly strict rules from breaking your site.
🚀 Automatically scan your application and generate a Content Security Policy that actually works. This tool identifies external resources, inline scripts, and creates proper CSP headers without breaking your site with overly strict rules.
💡 Perfect for developers who want security without the headache. Use it to protect against XSS attacks, comply with security standards, and output CSP in multiple formats—HTTP headers, meta tags, Next.js config, or Nginx snippets.
✨ AI-powered scanning means accurate detection with zero manual configuration. Just run one command and get an explained, production-ready policy.
Requirements
OpenAI API key for AI-powered CSP analysis and generation