Allow CSP: Content-Security-Policy

Easily remove CSP (Content-Security-Policy) rules from the response header.

Users10K

Rating4.0

Reviews4

Manifest versionV3

7-day growth0

7-day growth rate0%

Preview

Allow CSP: Content-Security-Policy Media preview

4 assets

Trend

30-day user trend

Review user movement over the last 30 days.

User Growth Over Time

Rating trend

30-day rating change

Track rating movement over time to see whether quality signals remain stable.

30-day rating change

Start

4.00

Latest

4.00

30-day rating change

0.00

2026年5月29日2026年6月4日

Growth overview

Daily, weekly, and monthly growth

Compare 1-day, 7-day, and 30-day net growth and growth rate.

1-day growthFlat

00%

7-day growthFlat

00%

30-day growthFlat

00%

Technical snapshot

Version, languages, and crawl freshness

Review publication date, version, supported languages, and crawl timestamps.

Version0.1.3

ManifestV3

Size60.24KiB

Languages1English (United States)

Published--

Store updated--

Last crawled--

Overview

Product summary

Review the store description, core capabilities, and common use cases.

Allow CSP extension lets you easily remove existing content security policy rules from any webpage (from the response header).

This extension is useful for web or mobile app developers or whenever you want to temporarily disable CSP rules. To work with this addon, please open the toolbar popup and then click on the toggle button on the left side to activate the addon. When the addon is installed, the default state is inactive with a grey icon color. Once it is active, the toolbar icon becomes blue. You can add/remove the active tab domain to the whitelist table via the toolbar popup.

If you have a feature request or found a bug to report please fill out the bug report form on the addon's homepage (https://mybrowseraddon.com/content-security-policy.html).

Reviews

Recent review snapshot

Inspect the latest comments and rating distribution.

The Chrome Web Store shows 4 reviews, but only 0 review bodies have synced into ExtScope so far. Showing the synced reviews available right now.

5★

4★

3★

2★

1★

Similar and related extensions

Review related products from the Chrome Web Store detail page.

CORS Unblock

Developer Tools

No more CORS error by appending 'Access-Control-Allow-Origin: *' header to local and remote web requests when enabled

CSP Unblock

Developer Tools

No more Content-Security-Policy limitations. This extension removes all CSP-related headers during website testing.

Disable Content-Security-Policy

Developer Tools

Disable Content-Security-Policy for web application testing. When the icon is coloured, CSP headers are disabled.

Allow CORS: Access-Control-Allow-Origin

Tools

Easily add (Access-Control-Allow-Origin: *) rule to the response header.

Content Security Policy (CSP) Generator

Developer Tools

Automatically generate content security policy headers online for any website.

CSP Evaluator

Developer Tools

CSP Evaluator is a tool that allows developers to check if a Content Security Policy (CSP) serves as mitigation against XSS attacks.

AI product read

Remove Content-Security-Policy (CSP) headers from HTTP responses to allow unrestricted resource loading

Web developers and users are blocked by CSP rules on websites that prevent loading external resources, testing scripts, or debugging. This extension removes those restrictions by stripping the CSP and CSP-Report-Only response headers.

User installs extension (default OFF/grey icon). User clicks toolbar popup toggle button to activate (icon turns blue). When active, the extension uses declarativeNetRequest to strip Content-Security-Policy headers from all HTTP responses. User can whitelist specific domains via the popup or options page to exclude them. Pressing Ctrl+Shift+D also toggles the state.

Target users: Web developers testing across CSP-restricted environments / Mobile app developers debugging web content / Users who need to temporarily bypass CSP rules on any webpage

No external service communication to analyze — extension is fully local

Monetization

No paid features detected

All features (toggle ON/OFF, whitelist management, CSP removal, CSP-Report-Only removal) are freely available. A 'donation' link exists in the popup UI but it is purely voluntary and does not gate any functionality. No payment processing, subscription, or premium feature gating was found.

Confidence: 100
Payment platform: --
Source: AI / High
Login required: No
Reason: The extension operates entirely locally using Chrome APIs (declarativeNetRequest, storage, runtime). No authentication, account creation, or external service login is required. All settings are stored locally via chrome.storage.

Permission risk

High-risk permissions

This estimate uses declared permissions and host permissions to assess access scope and sensitivity.

扩展能力较强：storage
主机权限覆盖范围较宽

Publisher

Muyor

Independent publisher

Email: [email protected]
Phone: --
Address: --

Public contact fields are shown above. Developer portfolio pages are available on paid accounts.

View developer portfolio

Permissions

Host access