CSP Tester

This extension helps web masters to test web application behaviour with Content Security Policy version 2.0 implemented.

What is CSP Tester?

"CSP Tester" is a useful Chrome extension that enables web masters to evaluate the performance and behaviour of their web applications with the implementation of Content Security Policy (CSP) version 2.0. The extension allows users to add URL Patterns, activate the policy, and observe potential CSP violations through the Developer Tools console. The findings help web masters make necessary changes in their policy settings for better security and functionality.

Download

Stats

By: oxdef

View on Chrome Web Store

Users: 2,000+

Rating: 3.71 (7)

Version: 2.1 (Last updated: 2018-10-02)

Creation date: 2018-09-02

Risk impact: High risk impact

Risk likelihood: Very low risk likelihood

Manifest version: 2

Permissions:

webRequest
webRequestBlocking
<all_urls>

Size: 17.01K

URLs: Website

Stats date:

Chrome-Stats Rank

# 21004 ▼ 246

Other rankings

#1656 in Developer Tools ▲ 3 #163 in policy keyword 19 ▲ 6 #275 in developer tools keyword 77 ▼ 4

Other platforms

Not available on Firefox

Not available on Edge

Want to check extension ranking and stats more quickly for other Chrome extensions? Install Chrome-Stats extension to view Chrome-Stats data as you browse the Chrome Web Store.

Summary

Analyze keywords

This extension helps web masters to test web application functionality with Content Security Policy (CSP) version 2.0 implemented.

Typical workflow looks like:

Open the extension window
Add into the URL Pattern a regular expression for the site that you want to test, for example ://yoursite.com/ (CSP Tester uses Chrome Match Patterns)
Tick the e.g. "self" checkbox, check "Active" and Save the changes
Open the Developer Tools and navigate to the tested site
Confirm a number of CSP violations reported in the Developer Tools Console as well as possible visual changes
Make changes in the policy based on these reports

User reviews

Very handy! i think the advanced mode is really all you need, weirdly it's way less complex than the default view, the only thing i could ask for is a bigger text box. Thanks!

Matt “CiderPunk” Lander, 2023-04-03

strips upgrade-insecure-requests; which is annoying

A Google user, 2018-04-07

Очищаются заполненные данные

Влад Майсов, 2016-01-16

View all user reviews

Safety

Risk impact

CSP Tester is risky to use as it requires a number of sensitive permissions that can potentially harm your browser and steal your data. Exercise caution when installing this extension. Review carefully before installing. We recommend that you only install CSP Tester if you trust the publisher.