How to protect PHP application from XSS attacks: CSP 3 nonce | PHP & Symfony Tips
Content Security Policy - KeyCDN Support
GitHub - GoSecure/csp-auditor: Burp and ZAP plugin to analyse Content- Security-Policy headers or generate template CSP configuration from crawling a Website