naugtur/CSP-exercise

deprecated CSP-exercise

go to https://github.com/naugtur/js-training-examples/

npm ci --ignore-scripts
npm start

Open http://localhost:1337/

Change the Content Security Policy and try to block all data theft attempts.

Credit where it's due

This toy is inspired by https://david-gilbertson.medium.com/im-harvesting-credit-card-numbers-and-passwords-from-your-site-here-s-how-9a8cb347c5b5