CSP Header Checker

A missing or report-only Content Security Policy leaves your site vulnerable to XSS attacks. ShipReady checks for CSP presence, mode (enforce vs report-only), and basic directive coverage.

Sites audited

64/100

Avg score

22%

Pass rate

Check your site now — it's free

Results in under 60 seconds. No account required.

Run a free audit →