ScriptAttest Documentation

Secure your web applications with automated Content Security Policy management.

What is ScriptAttest?

ScriptAttest is a comprehensive platform for managing Content Security Policies (CSP). It helps you:

• Scan your websites to detect existing policies and third-party resources
• Generate strict, secure policies automatically
• Monitor violations in real-time using our Report-URI endpoint
• Manage multiple sites from a single dashboard

Why CSP Matters

Content Security Policy is a browser security mechanism that helps prevent Cross-Site Scripting (XSS) and other code injection attacks. By defining which dynamic resources are allowed to load, you can significantly reduce the attack surface of your application.