CSP Evaluator

CSP Evaluator is a tool that allows developers to check if a Content Security Policy (CSP) serves as mitigation against XSS attacks.

什麼是CSP Evaluator?

CSP Evaluator是由Lukas Weichselbaum開發的Chrome擴展程式,該擴展的主要功能是“CSP Evaluator is a tool that allows developers to check if a Content Security Policy (CSP) serves as mitigation against XSS attacks.”。

擴展截圖

screenshot
screenshot

下載CSP Evaluator擴展crx文件

下載CSP Evaluator擴展crx格式的文件,手動將Chrome擴充功能安裝到瀏覽器中,也可以將crx文件分享給朋友,輕鬆安裝Chrome擴充功能。

擴展使用說明

                        CSP Evaluator is a small tool that allows developers and security experts to check if a Content Security Policy (CSP) serves as a strong mitigation against cross-site scripting attacks. Reviewing CSP policies is usually a very manual process and most developers are not aware of CSP bypasses. 
CSP Evaluator checks are based on a large-scale empirical study and are aimed to help developers to harden their CSP. This tool is provided only for the convenience of developers and Google provides no guarantees or warranties for this tool.                    

擴展基本資訊

名稱 CSP Evaluator CSP Evaluator
ID fjohamlofnakbnbfjkohkbdigoodcejf
官方網址 https://chromewebstore.google.com/detail/csp-evaluator/fjohamlofnakbnbfjkohkbdigoodcejf
簡介 CSP Evaluator is a tool that allows developers to check if a Content Security Policy (CSP) serves as mitigation against XSS attacks.
檔案大小 302 KB
安裝次數 24,197
目前版本 0.2.1
更新時間 2020-11-20
上架時間 2020-04-16
評分 3.21/5 共 24 次評分
開發者 Lukas Weichselbaum
電子郵箱 [email protected]
付費類型 free
擴展官網 https://csp-evaluator.withgoogle.com
說明頁面URL https://csp.withgoogle.com
支援的語言 en
manifest.json
{
    "update_url": "https:\/\/clients2.google.com\/service\/update2\/crx",
    "background": {
        "scripts": [
            "background.js"
        ]
    },
    "browser_action": {
        "default_icon": "resources\/icon-grey.png",
        "default_popup": "app.html"
    },
    "description": "CSP Evaluator is a tool that allows developers to check if a Content Security Policy (CSP) serves as mitigation against XSS attacks.",
    "icons": {
        "128": "resources\/icon128.png",
        "16": "resources\/icon16.png",
        "48": "resources\/icon48.png"
    },
    "key": "MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxTdUrnDTdQe6lGka\/IE62s\/+41don\/T6yFYZhU78nkuyqElw5iWij+0vd+RpEyaGw3Gvr3bvg7q+6PJDnGiNuEmrK+1JjSlBjRmZacVl+T2\/+bescjwY9VYuIdE6m\/4ZRoiixuEyZbxboGeNQRPTH7Nr8NNarDZd6sMIS9utX5WxLKvE6WUMAJrMS5rdCrfZz+LGKcJJFgvPnA5l+wu6jkn9LTjRWmggXLDOKP0emtIngzPrbQIpeM1nRBxXWgrHNjnLzxo0TOFr5LdmgjJXi8\/ruWga9vohOnBcwR5bEncKt0K5aSHJ2TN+lrnszQHydK15XWJyC7Y1tpwoiNoSdQIDAQAB",
    "manifest_version": 2,
    "minimum_chrome_version": "52",
    "name": "CSP Evaluator",
    "permissions": [
        "activeTab",
        "storage",
        "webRequest",
        "*:\/\/*\/*"
    ],
    "short_name": "CSP Evaluator",
    "version": "0.2.1",
    "web_accessible_resources": []
}