W3C Invites Implementations of Content Security Policy Level 2


The Web Application Security Working Group has published a Candidate Recommendation of Content Security Policy Level 2. This specification updates Content Security Policy, fine-tuning the existing policy options, and introducing a number of new mechanisms that site authors can use to mitigate the risk of content injection and related attacks. Major differences from Content Security Policy Level 1 may be found in Section 1.1 of the document.
With this publication, we move the earlier edition off the Recommendation Track to a Note (Content Security Policy 1.0) and invite implementers to share their experience with CSP Level 2. Learn more about the Security Activity.

Comments

Post a Comment

Popular posts from this blog

How to Structure Content for AI Search Engines in 2025-2026

Image
  The Ultimate Guide to Being Cited by Google AI Overviews, ChatGPT, Perplexity & Gemini In 2025, getting ranked on page 1 of Google is no longer enough. You now need to be the source that AI engines cite in their answers. Google’s AI Overviews already appear on more than 17-25 % of queries (depending on region), Perplexity is growing 300 % YoY, and ChatGPT Search is live. If your content isn’t structured in a way that large language models can easily parse, extract, and trust, you simply won’t appear in the new generation of search results. This is called Generative Engine Optimization (GEO) , and structured, AI-friendly content is the foundation. Below is the exact blueprint top-performing sites are using right now to dominate AI answers. Why Traditional SEO Structure Is No Longer Enough Old SEO Mindset (2020-2024) New AI/GEO Reality (2025+) H1 → H2 → paragraphs → keyword density Clear hierarchy + scannable answers + trustworthy signals Long walls of text Bite-sized, c...
Read more

Basic optimization tips : Effects on traffic

Website optimization might sound like a technical rabbit hole, but even basic improvements can have a major impact on your site’s traffic. Whether you run a personal blog, a business site, or an e-commerce store, simple tweaks can make your site faster, more visible, and more user-friendly—resulting in more visitors and better engagement. 1. Improve Page Load Speed Why it matters: Visitors won’t wait around for a slow site. Studies show that 40% of users abandon a site if it takes more than 3 seconds to load. Optimization tips: Compress images using tools like TinyPNG or ImageOptim. Use lazy loading for images and videos. Minify CSS, JavaScript, and HTML. Enable browser caching and use a content delivery network (CDN). Traffic impact: A faster site means lower bounce rates, higher retention, and better rankings in Google—leading to increased organic traffic. 2. Mobile Optimization Why it matters: Over 50% of web traffic comes from mobile devices. Google also uses mobile-f...
Read more

ChatGPT Atlas - The Evolution of Search: From Links to Conversations

Image
In the ever-evolving landscape of web browsing, OpenAI's ChatGPT Atlas has emerged as a bold challenger to the status quo. Launched on October 21, 2025, for macOS (with Windows, iOS, and Android versions teased as "coming soon"), Atlas isn't just another Chromium-based browser—it's an AI-infused portal that reimagines how we discover, process, and act on information. At its core lies a transformative search engine powered by ChatGPT, blending conversational AI with traditional web queries to deliver results that feel less like a list of links and more like a thoughtful dialogue with the internet. As someone who's spent hours tinkering with Atlas (and yes, I've imported my Chrome extensions for that seamless switch), I can say this: search in Atlas isn't about replacing Google—it's about elevating it. Gone are the days of sifting through blue hyperlinks; instead, you get curated insights, multimodal tabs, and an optional "memory" that rec...
Read more