newsletter: Add a note about Content Security Policy

LadybirdBrowser · Nov 29, 2024 · f1752a3 · f1752a3
1 parent 98ea920
commit f1752a3
Showing 1 changed file with 7 additions and 0 deletions.
diff --git a/src/content/newsletters/2024-11-30.mdx b/src/content/newsletters/2024-11-30.mdx
@@ -71,6 +71,13 @@ Combined with couple of other fixes, it's now possible to paint on https://excal
 
 ![](/assets/img/newsletter-nov-2024-excalidraw.png)
 
+### Content Security Policy
+
+We have started implementing [Content Security Policy](https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP), which allows websites to intentionally
+restrict what they are allowed to do. This is primiarily used to reduce the impact of vulnerabilities, such as Cross-Site Scripting (XSS).
+
+We can now start enforcing Content Security Policies delivered to us from websites such as [GitHub](https://github.com/) and [PayPal](https://paypal.com/)!
+
 ### Credits
 
 We thank the following people who contributed code to Ladybird in November 2024: