CSP Evaluator

CSP Evaluator is a tool that allows developers to check if a Content Security Policy (CSP) serves as mitigation against XSS attacks.

CSP Evaluatorとは何ですか?

CSP EvaluatorはLukas Weichselbaumによって開発されたChromeの拡張機能で、その主な機能は「CSP Evaluator is a tool that allows developers to check if a Content Security Policy (CSP) serves as mitigation against XSS attacks.」です。

拡張機能のスクリーンショット

screenshot
screenshot

CSP Evaluator拡張機能のCRXファイルをダウンロード

CSP Evaluator拡張子のファイルをcrx形式でダウンロードし、ブラウザにChrome拡張機能を手動でインストールするか、crxファイルを友達と共有して簡単にChrome拡張機能をインストールします。

拡張機能の使用方法

                        CSP Evaluator is a small tool that allows developers and security experts to check if a Content Security Policy (CSP) serves as a strong mitigation against cross-site scripting attacks. Reviewing CSP policies is usually a very manual process and most developers are not aware of CSP bypasses. 
CSP Evaluator checks are based on a large-scale empirical study and are aimed to help developers to harden their CSP. This tool is provided only for the convenience of developers and Google provides no guarantees or warranties for this tool.                    

拡張機能の基本情報

名前 CSP Evaluator CSP Evaluator
ID fjohamlofnakbnbfjkohkbdigoodcejf
公式URL https://chromewebstore.google.com/detail/csp-evaluator/fjohamlofnakbnbfjkohkbdigoodcejf
説明 CSP Evaluator is a tool that allows developers to check if a Content Security Policy (CSP) serves as mitigation against XSS attacks.
ファイルサイズ 302 KB
インストール数 24,197
現在のバージョン 0.2.1
最終更新日 2020-11-20
公開日 2020-04-16
評価 3.21/5 合計 24 レビュー
開発者 Lukas Weichselbaum
Eメール [email protected]
支払い方法 free
拡張機能のウェブサイト https://csp-evaluator.withgoogle.com
ヘルプページのURL https://csp.withgoogle.com
対応言語 en
manifest.json
{
    "update_url": "https:\/\/clients2.google.com\/service\/update2\/crx",
    "background": {
        "scripts": [
            "background.js"
        ]
    },
    "browser_action": {
        "default_icon": "resources\/icon-grey.png",
        "default_popup": "app.html"
    },
    "description": "CSP Evaluator is a tool that allows developers to check if a Content Security Policy (CSP) serves as mitigation against XSS attacks.",
    "icons": {
        "128": "resources\/icon128.png",
        "16": "resources\/icon16.png",
        "48": "resources\/icon48.png"
    },
    "key": "MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxTdUrnDTdQe6lGka\/IE62s\/+41don\/T6yFYZhU78nkuyqElw5iWij+0vd+RpEyaGw3Gvr3bvg7q+6PJDnGiNuEmrK+1JjSlBjRmZacVl+T2\/+bescjwY9VYuIdE6m\/4ZRoiixuEyZbxboGeNQRPTH7Nr8NNarDZd6sMIS9utX5WxLKvE6WUMAJrMS5rdCrfZz+LGKcJJFgvPnA5l+wu6jkn9LTjRWmggXLDOKP0emtIngzPrbQIpeM1nRBxXWgrHNjnLzxo0TOFr5LdmgjJXi8\/ruWga9vohOnBcwR5bEncKt0K5aSHJ2TN+lrnszQHydK15XWJyC7Y1tpwoiNoSdQIDAQAB",
    "manifest_version": 2,
    "minimum_chrome_version": "52",
    "name": "CSP Evaluator",
    "permissions": [
        "activeTab",
        "storage",
        "webRequest",
        "*:\/\/*\/*"
    ],
    "short_name": "CSP Evaluator",
    "version": "0.2.1",
    "web_accessible_resources": []
}