This is a simple HTML- and JavaScript-based tool that allows you to input a Content-Security-Policy (CSP) header and see a table providing nicer view of its effects.
The tool is completely written in self-contained HTML and JavaScript, so no special hosting is required. You can run it locally by cloning this repository, or from the version hosted on GitHub pages.
- Open
csp-viz.htmlin a browser that supports ES2016 (I think) - Put your CSP into the text input field
- Submit
The page should render a table describing the CSP.
I made this one day after having to read a CSP string several times and wishing I had an easier way to view it.