When implementing a Content-Security-Policy, precision is a key: Too strict of rules will block legitimate website parts. Too loose of rules will be bypassable.
6 common web client-side vulnerabilities, account for 45% of all cybersecurity threats. These include: 1. XSS: Cross-site scripting 2. Clickjacking 3. Formjacking 4. CSRF 5. Magecart
6. Data Exfiltration