CSP Header Generator

Build a Content-Security-Policy header or meta tag.

About CSP Header Generator

Create a Content Security Policy (CSP) to reduce XSS risk and control which resources your site can load. Fill in the directives you need and copy the header or meta tag output.

How to use

  1. Pick a starter template or enter directives manually.
  2. Copy the header output or meta tag.
  3. Deploy, then iterate based on browser console reports.

Privacy

No data is sent anywhere. Everything stays in your browser.

For resource integrity and response header checks, see SRI Hash Generator, HTTP Header Checker, and SSL Checker.

Related Tools

More tools you may find useful.

SSL Checker Link Checker Password Generator MD5 Hash Generator SHA1 Hash Generator SHA256 Hash Generator SHA512 Hash Generator Bcrypt Verify Bcrypt Hash Generator SPF Record Flattener PDF Metadata Scrubber Random Bytes Generator HMAC Generator & Verifier SRI Hash Generator

Recent Blog Posts

Dashboard and Stats Refresh

Dashboard and Stats Refresh

T.LY analytics recently got a cleaner dashboard and stats page. This update was not just about making the screens look newer. The goal was to make link performance easier to understand when you have a...

8 MIN READ
IPv4 vs IPv6: What Is the Difference?

IPv4 vs IPv6: What Is the Difference?

IPv4 and IPv6 are two versions of IP addresses. Both help devices communicate across networks. The main difference is address space. IPv4 is older and shorter. IPv6 is newer and supports a much larger...

5 MIN READ
How to Track QR Code Campaigns Before You Print

How to Track QR Code Campaigns Before You Print

The best time to set up QR code tracking is before you print. Not after the flyers arrive. Not after the menu is laminated. Not after the conference badges are shipped. Before. Once a QR code is print...

8 MIN READ
How to Choose a Short Branded Domain

How to Choose a Short Branded Domain

A short branded domain is the domain you use for your short links. Instead of sending people through a generic short URL, you use something tied to your brand, campaign, product, or organization. For...

9 MIN READ
What Is an ISP and ASN Lookup?

What Is an ISP and ASN Lookup?

An IP address can tell you more than the number. With the right lookup, you can often see the internet service provider, organization, usage type, and ASN behind the connection. The T.LY What Is My IP...

4 MIN READ
Why Is My IP Location Wrong?

Why Is My IP Location Wrong?

IP location is useful, but it is not exact. If an IP lookup shows the wrong city, wrong region, or even the wrong country, it does not automatically mean your device is hacked or your internet is brok...

5 MIN READ
How to Check If a VPN or Proxy Is Working

How to Check If a VPN or Proxy Is Working

When a VPN or proxy is working, websites should see different network details than they see on your normal connection. The fastest check is still the boring one: compare your public IP before and afte...

4 MIN READ
Free T.LY Campaign QA Tools Worth Bookmarking

Free T.LY Campaign QA Tools Worth Bookmarking

Most campaign mistakes are boring. That is what makes them expensive. They are small things that get missed before launch: A QR code points through too many redirects A landing page has the wrong soc...

5 MIN READ
Public vs Private IP Address: What Is the Difference?

Public vs Private IP Address: What Is the Difference?

When you check your IP address, you may notice something confusing: your device can have more than one IP address. Your laptop might show a local address like 192.168.1.24, while a website shows somet...

5 MIN READ
No Interstitial Ads. No Data Sales. Just Short Links

No Interstitial Ads. No Data Sales. Just Short Links

When someone clicks a short link, they should land where the link says they are going. That should be the whole experience. No ad page. No countdown. No strange stop in the middle. No page that makes...

3 MIN READ
New OneLinks Features: A Better Link in Bio Builder

New OneLinks Features: A Better Link in Bio Builder

OneLinks started as a simple link-in-bio tool. That was useful, but it was not enough. People use a single link in a lot more places now: Instagram bios, TikTok profiles, product packaging, event badg...

17 MIN READ
QR Code Tracking: How to Track Scans in 2026

QR Code Tracking: How to Track Scans in 2026

QR codes are everywhere now. Menus, flyers, business cards, packaging, real estate signs, event badges, direct mail, table tents. That part is no longer interesting. The interesting part is this: can...

20 MIN READ