Content Security Policy is delivered via a HTTP response header, much like HSTS
[https://scotthelme.co.uk/hsts-the-missing-link-in-tls/], and defines approved
sources of content that the browser may load. It can be an effective
countermeasure to Cross Site Scripting (XSS) attacks and is also...