content-security-policy-builder

Build Content Security Policy directives.

Usage no npm install needed!

<script type="module">
  import contentSecurityPolicyBuilder from 'https://cdn.skypack.dev/content-security-policy-builder';
</script>

README

Content Security Policy builder

Build Status

Take an object and turn it into a Content Security Policy string. Useful for building Content Security Policy libraries.

It can handle a lot of things you can you throw at it; camelCased or dash-separated directives, arrays or strings, et cetera.

Usage:

const builder = require('content-security-policy-builder')

// default-src 'self' default.com; script-src scripts.com; whatever-src something; object-src
builder({
  directives: {
    defaultSrc: ["'self'", 'default.com'],
    scriptSrc: 'scripts.com',
    'whatever-src': 'something',
    objectSrc: true
  }
})