⚖ Browsers support of the child-src directive; child-src is a fallback directive for frame-src and worker-src; frame-src and worker-src take precedence over child-src
How To Secure Node.js Applications with a Content Security Policy | DigitalOcean
Unrecognized Content-Security-Policy directive 'referrer'. - Salesforce Developer Community
Optimizely's Content-Security-Policy Journey | by Ola Nordstrom | Engineers @ Optimizely | Medium
A systematic study of content security policy in web applications - Liu - 2016 - Security and Communication Networks - Wiley Online Library
On Ubuntu 16 "Unrecognized Content-Security-Policy directive" reported from some tests · Issue #1194 · coreinfrastructure/best-practices-badge · GitHub
Debugging and setting the Content Security Policy in the CSP header and meta tag; debug via browser console, via violation reports and SecurityPolicyViolation event; why the CSP header is truncated
Content Security Policy with Google Analytics & Tag Manager | Bounteous
Security/CSP/Specification - MozillaWiki
⚖ 'unsafe-eval' in worker-src / child-src does not work, it must be specified in script-src; the worker-src directive covers only the worker creation, the executing of worker's script is controlled by other
What is a Content Security Policy & How to Implement Best Practices
Security/CSP/Specification - MozillaWiki
Unrecognized Content-Security-Policy directive 'require-trusted-types-for' · Issue #10699 · GoogleChrome/lighthouse · GitHub
Unrecognized Content-Security-Policy directive 'require-trusted-types-for' · Issue #10699 · GoogleChrome/lighthouse · GitHub
Recording #94
Content Security Policy for Single Page Web Apps | Square Corner Blog
How to create a solid and secure Content Security Policy
Can't access campaign because of "Unrecognized Content-Security-Policy directive worker-src" error. - Google Ads Community
Content security policy
Using Content Security Policy (CSP) to Secure Web Applications | Invicti
A systematic study of content security policy in web applications - Liu - 2016 - Security and Communication Networks - Wiley Online Library
Setting up Content-Security-Policy for Atlassian p...
Improving Web Security with the Content Security Policy - SitePoint
Stripe Connect violating Content Security Policy Directory - APIs - Bubble Forum
Content Security Policy (CSP) Headers
CSP policy in Safari | Apple Developer Forums
javascript - because it violates the following Content Security Policy directive: "style-src 'self'" - Stack Overflow
Safari doesn't like CSP
Stripe Connect violating Content Security Policy Directory - APIs - Bubble Forum
