koa-csp
Version:
Used to set respose header: Content-Security-Policy
28 lines (27 loc) • 500 B
JavaScript
export default [
'default-src',
'child-src',
'connect-src',
'font-src',
'frame-src',
'img-src',
'manifest-src',
'media-src',
'object-src',
'prefetch-src',
'script-src',
'script-src-elem',
'script-src-attr',
'style-src',
'style-src-attr',
'style-src-elem',
'webrtc-src',
'worker-src',
'frame-ancestors',
'form-action',
'report-uri',
'base-uri',
'report-to',
'sandbox',
'upgrade-insecure-requests',
];