UNPKG

vite-plugin-csp-guard

Version:

A Vite plugin that lets SPA applications generate a Content Security Policy (CSP).

vite-csp.tsotne.co.uk

tsotimus/vite-plugin-csp-guard

50 lines (40 loc) 1.8 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
# Vite Plugin CSP Guard <!-- BEGIN BADGES --> [![npm version](https://img.shields.io/npm/v/vite-plugin-csp-guard)](https://www.npmjs.com/package/vite-plugin-csp-guard) [![npm downloads](https://img.shields.io/npm/dt/vite-plugin-csp-guard)](https://www.npmjs.com/package/vite-plugin-csp-guard) [![npm weekly downloads](https://img.shields.io/npm/dw/vite-plugin-csp-guard)](https://www.npmjs.com/package/vite-plugin-csp-guard) [![License](https://img.shields.io/npm/l/vite-plugin-csp-guard)](https://github.com/tsotimus/vite-plugin-csp-guard/blob/main/LICENSE) [![GitHub stars](https://img.shields.io/github/stars/tsotimus/vite-plugin-csp-guard?style=social)](https://github.com/tsotimus/vite-plugin-csp-guard) <!-- END BADGES --> This is a well tested Vite Plugin that allows you to declare your Content Security Policy (CSP) for your Vite project. First class support for SPA's ## Documentation Full documentation and helpful guides are available [here](https://vite-csp.tsotne.co.uk). ## Installation ```bash npm install -D vite-plugin-csp-guard # or yarn add -D vite-plugin-csp-guard # or pnpm add -D vite-plugin-csp-guard ``` ## Basic Usage ```ts // vite.config.ts import { defineConfig } from "vite"; import csp from "vite-plugin-csp-guard"; export default defineConfig({ plugins: [ csp({ algorithm: "sha256", // The algorithm to use for hashing dev: { run: true, // If you want to run the plugin in `vite dev` mode }, policy: { // Specify the policy here. "script-src": ["'self'", "https://www.google-analytics.com"], // Example: Allow Google Analytics "style-src": ["'self'", "https://fonts.googleapis.com"], // Example: Allow Google Fonts }, }), ], }); ```