CSP: Header & Meta
- Risk:
Informational
- Type:
- Passive
- CWE:
- 693
- Summary
- The message contained both CSP specified via header and via Meta tag. It was not possible to union these policies in order to perform an analysis. Therefore, they have been evaluated individually.
- Solution
- Ensure that your web server, application server, load balancer, etc. is properly configured to set the Content-Security-Policy header.