A browser extension to disable http header Content-Security-Policy and html meta Content-Security-Policy
Disable-CSP: Cross-Domain Resource Injection Extension
Disable-CSP is a browser extension that disables http header Content-Security-Policy and html meta Content-Security-Policy. It allows for cross-domain resource injection, enhancing the website development and testing experience.
Extension stats
Risk impact: Very high risk impact
Risk likelihood:
Manifest version: 3
Permissions:
- declarativeNetRequest
- debugger
- storage
- tabs
Host permissions:
- <all_urls>
Size: 34.89K
Email: *****@songe.li
Ranking
Other platforms
Not available on Android
Not available on Firefox
Not available on Edge
Want to check extension ranking and stats more quickly for other Chrome extensions?
Install
Chrome-Stats extension
to view Chrome-Stats data as you browse the Chrome Web Store.
Extension summary
A browser extension to disable http header Content-Security-Policy and html meta Content-Security-Policy
In the process of website development and testing, we inevitably need to inject cross-domain resources into some websites, but Content-Security-Policy prevents this. So you can use this extension to disable Content-Security-Policy so that you have a better development experience
- disable http header csp
- disable html meta csp (must open devtools)
source code https://github.com/lisonge/Disable-CSP
Extension safety
Risk impact
Disable-CSP requires a lot of sensitive permissions. Exercise caution before installing.
Risk impact analysis details
- Critical Allows for debugging of other web apps and extensions, which can intersect with sensitive information and security boundaries.
- Critical ****** ****** ** ******* ***** ***** *** ** **** ** ***** **** ******** ****** *** ******** ********** * ******* ********
- Critical ****** ****** ** *** ********* ****** * *********** ******** **** ** ** *** ******* *** ****** **** **** *** ******* *****
- Medium ****** ** ********* ****** ********* *** **** ****** **** **** ** ******* ** ********** **** ***********
- Low ******* ****** ** *** ********* ********
Risk likelihood
Disable-CSP has earned a fairly good reputation and likely can be trusted.
Risk likelihood analysis details
- High This extension has low user count. Unpopular extensions may not be stable or safe.
- Low **** ********* *** ******* **** **** * ****** **** ***** ******** *** **** ****** ** ** ****** *** *****
- Low **** ********* *** ***** **** **** * ****** **** ***** ********** *** **** ****** ** ** ****** *** *****
Upgrade to see full risk analysis details
Similar extensions
Here are some Chrome extensions that are similar to Disable-CSP:
Mywait
1,000+
kangjung
601
anghunk
2,000+
Phil Grayson
50,000+
https://docs.scriptcat.org
30,000+
marian.caikovski
517
https://csper.io
20,000+
https://rsshub.app
50,000+
EnixCoda
8,000+
https://rufflewind.com
2,000+
FishJar
7,000+
https://www.baidufe.com
100,000+