Makes it easier to read Content-Security-Policy (CSP) and Permissions-Policy (PP) headers, and checks that all other related headers have been set for the HTML and linked resources (e.g. Referrer-Policy).
It can also set a "X-Dev-Key" header on all requests to your server, where the value is typically kept as a secret, and allows your server to enable additional debug information (just as an extra precaution, your server should also check the source IP address, and ideally that you are logged in).
谷歌浏览器、其他Chromium内核的浏览器
为打击盗链困扰,本站已启用人机验证
微信扫码关注左侧公众号,发送“插件”二字获得验证码,验证码5分钟全站有效