The `report-sample` property in CSP violation reports.

The `report-sample` property attempts to reach consensus on an opt-in variant Firefox's behavior. In short, we'll collect a 40-character sample for inline script and style violations, and include it in the violation report (and associated SecurityPolicyViolationEvent object) iff a 'report-sample' expression is present in the violated directive.

Documentation

Specification

Editor's draft

Status in Chromium

Blink>SecurityFeature


Enabled by default (launch bug) in:

  • Chrome for desktop release 59
  • Chrome for Android release 59
  • Android WebView release 59
  • Opera release 46
  • Opera for Android release 46

Consensus & Standardization

  • No public signals
  • No public signals
  • No public signals
  • Positive

Owner

Last updated on 2017-07-26