Content Security Policy is a browser mechanism that helps to prevent cross-site scripting (XSS) attacks. What is XSS? It’s a kind of attack when an attacker injects some client-side script into a web page in order to get access to the secret data or inject other malicious software. Once the injected script gains the access to the page, it needs to send the data to or somehow communicate with the a