Mitigating Cross-Site Scripting Attacks with a Content Security Policy | Synapse