csp-toolkit: Analyzing Content Security Policy Headers at Scale
Summary
The article introduces csp-toolkit, a Python library and CLI for parsing CSP headers, evaluating weaknesses, and identifying bypass vectors. It details features such as a bypass finder, multiple analysis commands, violation handling, and tooling for recon, patch generation, and CSP governance, demonstrated with examples and top-site scoring.