OpenSkillIndex← back to search
claude-codesecurity

Babysitter csp

Content Security Policy configuration, nonces, and reporting.

install
source · Clone the upstream repo
git clone https://github.com/a5c-ai/babysitter
Claude Code · Install into ~/.claude/skills/
T=$(mktemp -d) && git clone --depth=1 https://github.com/a5c-ai/babysitter "$T" && mkdir -p ~/.claude/skills && cp -r "$T/library/specializations/web-development/skills/csp" ~/.claude/skills/a5c-ai-babysitter-csp && rm -rf "$T"
manifest: library/specializations/web-development/skills/csp/SKILL.md
tags
#csp-configuration#security-hardening#xss-prevention#http-headers#web-security
source content

CSP Skill

Expert assistance for Content Security Policy implementation.

Capabilities

  • Configure CSP headers
  • Implement nonces
  • Set up reporting
  • Handle inline scripts
  • Configure strict CSP

CSP Configuration

// Next.js middleware
const cspHeader = `
  default-src 'self';
  script-src 'self' 'nonce-${nonce}' 'strict-dynamic';
  style-src 'self' 'nonce-${nonce}';
  img-src 'self' blob: data:;
  font-src 'self';
  connect-src 'self';
  frame-ancestors 'none';
  base-uri 'self';
  form-action 'self';
  report-uri /api/csp-report;
`;

Target Processes

  • security-hardening
  • csp-implementation
  • xss-prevention