Cooling signalUnknownHigh-risk permissions
CSP Evaluator icon

CSP Evaluator

CSP Evaluator is a tool that allows developers to check if a Content Security Policy (CSP) serves as mitigation against XSS attacks.

Users20KCurrent public install base
Rating3.1Store average score
Reviews34Public review volume
Manifest versionV3Extension platform version
7-day growth-10KNet users gained this week
7-day growth rate-33.3%Relative weekly velocity
Preview

CSP Evaluator Media preview

2 assets
Trend

User growth trend

Review user movement across collected snapshots.

User Growth Over Time

19K22K25K28K31K2026年7月13日2026年7月16日2026年7月19日Latest: 20K
Rating trend

7-day rating trend

View collected rating snapshots from the latest 7-day window to assess rating stability.

7-day rating change

Start
3.09
Latest
3.09
7-day rating change
0.00
2.993.043.093.143.192026年7月13日2026年7月16日2026年7月19日Latest: 3.09
2026年7月13日2026年7月19日
Growth overview

Daily, weekly, and monthly growth

Compare 1-day, 7-day, and 30-day net growth and growth rate.

1-day growthDeclining
-10K-33.3%
7-day growthDeclining
-10K-33.3%
30-day growthDeclining
-10K-33.3%
Technical snapshot

Version, languages, and crawl freshness

Review publication date, version, supported languages, and crawl timestamps.

Version0.3.3
ManifestV3
Size296KiB
Languages1English
Published
Store updated
Last crawled
English
Overview

Product summary

Review the store description, core capabilities, and common use cases.

CSP Evaluator is a small tool that allows developers and security experts to check if a Content Security Policy (CSP) serves as a strong mitigation against cross-site scripting attacks. Reviewing CSP policies is usually a very manual process and most developers are not aware of CSP bypasses.

CSP Evaluator checks are based on a large-scale empirical study and are aimed to help developers to harden their CSP. This tool is provided only for the convenience of developers and Google provides no guarantees or warranties for this tool.

Reviews

Recent review snapshot

Inspect the latest comments and rating distribution.

Store average score3.1Chrome Web Store aggregate rating, including ratings without synced review text
Synced text average2.7Average computed only from synced review bodies below
Reviews with text26Synced review bodies
Total ratings / reviews34Chrome Web Store public rating/review count

Store average score: 3.1. The bars below are calculated from synced review text only, so they may be empty for extensions that have public ratings but no synced comments yet.

5
8
4
3
3
1
2
0
1
14
Dika Purnasucita2019年11月7日
5

cool. May be better if it's possible to add/remove CSP directives so I can test without deploying codes lol

Language en
2 helpful · 1 not helpful
Korutz2019年10月29日
1

doesn't detect CSP in page meta tags

Language en
3 helpful · 0 not helpful
Ronald Reagan2018年7月5日
5

Спасибо!

Language ru
Binyamin Laukstein2018年1月30日
4

Where to post the issues? It shows 'Directive "prefetch-src" is not a known CSP directive.', https://w3c.github.io/webappsec-csp/#directive-prefetch-src

Language en
1 helpful · 2 not helpful
Dario Alpern2017年1月21日
4

It appears that the extension does not consider CSP in meta tags.

Language en
2 helpful · 0 not helpful
iphon4ik2016年9月29日
5

Супер!

Language mk
1 helpful · 0 not helpful