CSP Tester

This extension helps web masters to test web application behaviour with Content Security Policy version 2.0 implemented.
What is CSP Tester?
"CSP Tester" is a useful Chrome extension that enables web masters to evaluate the performance and behaviour of their web applications with the implementation of Content Security Policy (CSP) version 2.0. The extension allows users to add URL Patterns, activate the policy, and observe potential CSP violations through the Developer Tools console. The findings help web masters make necessary changes in their policy settings for better security and functionality.

Extension stats

By: oxdef
Users: 2,000+
Rating: 3.71 (7)
Version: 2.1 (Last updated: 2018-10-02)
Creation date: 2018-09-02
Risk impact: High risk impact
Risk likelihood: Very low risk likelihood
Manifest version: 2
Permissions:
  • webRequest
  • webRequestBlocking
  • <all_urls>
Size: 17.01K

Other platforms

Not available on Firefox
Not available on Edge
Want to check extension ranking and stats more quickly for other Chrome extensions? Install Chrome-Stats extension to view Chrome-Stats data as you browse the Chrome Web Store.

Extension summary

This extension helps web masters to test web application functionality with Content Security Policy (CSP) version 2.0 implemented.

Typical workflow looks like:

  1. Open the extension window
  2. Add into the URL Pattern a regular expression for the site that you want to test, for example ://yoursite.com/ (CSP Tester uses Chrome Match Patterns)
  3. Tick the e.g. "self" checkbox, check "Active" and Save the changes
  4. Open the Developer Tools and navigate to the tested site
  5. Confirm a number of CSP violations reported in the Developer Tools Console as well as possible visual changes
  6. Make changes in the policy based on these reports

User reviews

Very handy! i think the advanced mode is really all you need, weirdly it's way less complex than the default view, the only thing i could ask for is a bigger text box. Thanks!

strips upgrade-insecure-requests; which is annoying
by A Google user, 2018-04-07

Очищаются заполненные данные
View all user reviews

Extension safety

Risk impact

CSP Tester requires some sensitive permissions that could impact your browser and data security. Exercise caution before installing.

Risk likelihood

CSP Tester has earned a good reputation and can be trusted.

Upgrade to see risk analysis details

Similar extensions

Here are some Chrome extensions that are similar to CSP Tester: