Thanks, that looks useful! But not quite what I'm after in this case. Part of our manual testing is to open devtools and make sure there are no errors where legitimate content is being blocked due to CSP or mixed-content. It would be handy to automate that as a post-deploy check.
It should be pretty straightforward to spin up a headless browser then report on any console errors. I'll keep looking and will post back here if I find anything
Log in to continue
The place for Snyk users & security enthusiasts to share their experience and learn from each other.
Is csp-evaluator.withgoogle.com/ something you've tried?
Thanks, that looks useful! But not quite what I'm after in this case. Part of our manual testing is to open devtools and make sure there are no errors where legitimate content is being blocked due to CSP or mixed-content. It would be handy to automate that as a post-deploy check.
Ah, not come across anything but interested if you find something
It should be pretty straightforward to spin up a headless browser then report on any console errors. I'll keep looking and will post back here if I find anything