HTTP & Security Header Tools

Content Security Policy Builder

Content Security Policy Builder builds a Content-Security-Policy header in your browser from presets and per-directive sources.

Client-sideRuns entirely in your browser — your data never leaves your device.

Content Security Policy Builder is a free HTTP & Security Header Tools utility that runs entirely in your browser — nothing you enter is uploaded.

Content-Security-Policy



  
How to use Content Security Policy Builder

  
    
      
  1. Type or paste your text into Content Security Policy Builder's input area.
    2. 
      
  2. Set Preset, script-src (optional), style-src (optional) so the output fits your use case.
    3. 
      
  3. Content Security Policy Builder updates the output automatically as you type.
    4. 
      
  4. When it looks right, Copy to save it.
    5. 
  

  
About this tool

  
Everything Content Security Policy Builder does happens on your own device. Content Security Policy Builder handles your input locally and returns the result instantly, with no sign-up.

  
It is designed to do one job well and stay out of your way. No data is sent anywhere, so it stays fast and private by default.

  
Frequently asked questions

  

      
What is Content Security Policy Builder for?
Content Security Policy Builder lets you process your input right in the browser using the Preset, script-src (optional) controls, with the result shown instantly and nothing uploaded.

      
Is Content Security Policy Builder free to use?
Yes — Content Security Policy Builder is completely free, with no usage limits.

      
Where is my data processed by Content Security Policy Builder?
Entirely in your browser — Content Security Policy Builder keeps your data on your own machine and sends nothing anywhere.

      
Does Content Security Policy Builder work offline?
Once the page has loaded, Content Security Policy Builder keeps working with no network connection.

  

  
Related CSP & security header tools