Docs/Extensions/Webview CSP

Webview Content Security Policy

Guide for configuring Content Security Policy (CSP) in Webviews.

Best Practices

  • Always set a strict CSP
  • Use nonces to allow inline scripts
  • Avoid using unsafe-inline
    • ← Back to DocumentationFeedback on this page