Free CSP Builder

Free Content Security Policy (CSP) builder. Generate a complete CSP header for your web application.

What does this tool do? Build a Content Security Policy (CSP) header for your website. CSP tells browsers which resources (scripts, styles, images) are allowed to load, helping prevent XSS attacks and data injection.

Policy built entirely in your browser

View Technical Specifications (For Developers)

Directives: Supports default-src, script-src, style-src, img-src, font-src, connect-src, frame-src
Output: HTTP header format and HTML <meta> tag format

Configure your Content-Security-Policy directives. Leave blank to omit a directive.

default-src

script-src

style-src

img-src

font-src

connect-src

frame-src

Generated CSP Header

Fuel the Project

Free tools, zero server uploads, total privacy.

Support via PayPal

Free CSP Builder

Fuel the Project

Explore Related Tools