cdn.example.com

fonts.googleapis.com

script-src 'self'

style-src 'self'

img-src 'self' data:

connect-src 'self'

frame-src 'self'

object-src 'none'

Content security policy deployment, monitoring and maintenance made easy

Get started for free

No credit card required

Features

Everything you need to manage your content security policy rollout

Real‑time report feed

New reports land in your feed in under a second, enriched with data such as the number of impacted users, first‑seen and last‑seen timestamps and more

Reports

127 users affected

script-src

https://cdn.example.com/analytics.js

24h

style-src

https://fonts.googleapis.com/css

12h

Multiple endpoints

Send reports to different endpoints, split areas like your marketing site and dashboard reports into separate feeds

Endpoints

Marketing Site

marketing.example.com

24 reports

Dashboard

app.example.com

12 reports

Documentation

docs.example.com

3 reports

Advanced filtering

Cut through the noise. Easily filter reports by directive, endpoint and disposition

Active Filters

Directive:script-src

Disposition:enforce

Endpoint:app.example.com

Showing 47 of 1,234 reports

Policy scoring

We automatically detect policies from your reports and flag any issues or recommendations

RecommendationsA+

Score95%

No unsafe-inline

No unsafe-eval

No nonce

Recommended

Invite your entire team

Invite your team members at no additional cost

Team Members

John Doe

Admin

Bob Johnson

Member

Alerts

Configure alerts to notify you when new violations are detected or when specific thresholds are met

Alert Rules

High Volume Alert

Triggered when >50 violations/hour

Last triggered: 2h ago

New Directive Alert

Email when new CSP directive violations occur

Status: Active

Source mapping

Pinpoint the exact source file and line number causing a violation

Violation Source

eval() detected

src/components/Analytics.js:42:15

40 | function trackEvent(data) {
41 | const script = buildScript(data);
42 | eval(script); // ← CSP violation
43 | }

unsafe-evalLine 42, Column 15

Pricing

Flexible plans designed to grow with your organisation

MonthlyYearly

Free

10k reports / month
Track up to 10,000 CSP violation reports monthly
1 endpoint
Send reports to 1 unique endpoint URL for processing
Unlimited websites
Monitor as many domains as you like, no restrictions
7 day history
We will store your CSP violation reports for 7 days
No alerts
No email notifications, but you can still access your reports
Invite your team
Invite your team to CSP Warden at no extra cost

Get started

Plus

$50/ month

250k reports / month
Track up to 250,000 CSP violation reports monthly
5 endpoints
Create multiple endpoints, for example marketing website, dashboard, documentation, etc.
Unlimited websites
Monitor as many domains as you like, no restrictions
30 day history
We will store your CSP violation reports for 30 days
2 alerts
Create up to 2 alert rules and get notified via email
Invite your team
Invite your team to CSP Warden at no extra cost

Get started

Pro

$250/ month

5M reports / month
Track up to 5 million CSP violation reports monthly
Unlimited endpoints
Create unlimited endpoint URLs for all your projects
Unlimited websites
Monitor as many domains as you like, no restrictions
60 day history
We will store your CSP violation reports for 60 days
Unlimited alerts
Create unlimited alert rules and get notified via email
Invite your team
Invite your team to CSP Warden at no extra cost

Get started