Skip to content

devsnek/webpack-csp-plugin

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

12 Commits
src
src
 
 
test
test
 
 
.eslintrc.json
.eslintrc.json
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
package.json
package.json
 
 

Repository files navigation

Webpack CSP Plugin

This plugin generates a CSP header from your webpack build.

Hashing is used over nonces to prevent modifying the build in unexpected ways.

Right now workers (Worker, SharedWorker, ServiceWorker) are not parsed due to the complexity of how they can be mounted, so you will need to add those rules manually.

new WebpackCspPlugin({
  output: 'csp_header.txt', // or `(header) => { ... }`
  reportUri: 'https://example.com/cspreport', // if you have a csp reporting server
  workers: ['https://worker.io/sw.js'], // if you use workers (see above)
  // defaults, styles, scripts, fonts, etc.
});

About

Generate a CSP header from your webpack build

Topics

nodejs javascript webpack content-security-policy

Resources

Readme
Activity

Stars

4 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages