CSP policy generator

Scan your site and generate a policy grounded in what it really loads.

Consepo uses a real browser crawl to discover scripts, styles, fonts, frames, and image origins, then assembles a production-ready Content Security Policy from that evidence.

Instead of hand-writing directives from guesswork, scan the site, review discovered sources, and export a policy your team can deploy in the format it already uses.

  • Render pages in Chromium so modern apps are measured after scripts execute.
  • Map discovered origins back to the directives they require.
  • Export headers for Cloudflare, WordPress, WP Engine, or custom pipelines.
Run a free scan See plans

Need the standard behind the workflow? Read the W3C CSP Level 3 specification.

Consepo Workflow

Policy build output

  • 1Rendered crawl across live site paths
  • 2Directive-by-directive source discovery
  • 3Export snippets for multiple deployment targets
  • 4Review loop before Report-Only rollout

Replace manual allowlist guessing

The scanner captures what the page actually fetched, which gives teams a defensible starting point for a tight policy.

Move faster across platforms

One scan can turn into deployable output for WordPress, reverse proxies, and Workers without rewriting the same policy by hand.

Stay grounded in browser evidence

Because the crawl happens in a real browser, policies account for script execution, async assets, and runtime-loaded dependencies.

Workflow

How this fits the Consepo rollout

Step 1

Run a browser-rendered crawl

Consepo visits the site like a user would and records the origins required by each loaded resource class.

Step 2

Review suggested directives

Inspect the generated allowlists, trim anything unnecessary, and decide where nonces, hashes, or stricter directives make sense.

Step 3

Export and ship

Choose the target format your stack needs and roll it out in Report-Only mode first.

Deliverables

What teams get out of it

  • A suggested CSP rooted in observed resource loads
  • Deployment-ready snippets for common hosting environments
  • A shorter path from initial scan to safe enforcement

Related feature paths

Keep this feature connected to the broader CSP rollout.

These pages help visitors move between the feature detail, the full feature set, and the solution paths where the feature is most useful.

Next step

Scan the site, review the evidence, and move toward an enforceable CSP.

Consepo is built to help teams go from first crawl to stable policy rollout without guessing which sources belong in the final header.

Create accountBack to overview