Feature-Policy is a new header that, in format, seems to look exactly like CSP. It uses a separate Feature-Policy HTTP header and instead of script-src, img-src, and so on as directives, it uses directives such as geolocation and vibrate.
It would be neat if csp-builder supported these. I realize that it is not strictly the same as CSP. An alternative would be to create a new project, though it would likely duplicate most efforts as the structure - and likely code - would mostly be the same.
Feature-Policy
is a new header that, in format, seems to look exactly like CSP. It uses a separateFeature-Policy
HTTP header and instead ofscript-src
,img-src
, and so on as directives, it uses directives such asgeolocation
andvibrate
.It would be neat if csp-builder supported these. I realize that it is not strictly the same as CSP. An alternative would be to create a new project, though it would likely duplicate most efforts as the structure - and likely code - would mostly be the same.
[1] https://wicg.github.io/feature-policy/ [2] https://developers.google.com/web/updates/2018/06/feature-policy [3] https://caniuse.com/#search=feature-policy