XSS, one of the most common web vulnerabilities, can be completely prevented with a strict Content Security Policy (CSP). Older versions of CSP involved the tedious process of building a whitelist of domains where scripts lived. It is very common for thes