#!/usr/bin/env python3 | |
import sys | |
sys.stdout.write( | |
'Content-Security-Policy: default-src \'self\'; report-uri ../resources/save-report.py\r\n' | |
'Content-Type: text/html\r\n\r\n' | |
'<!DOCTYPE html>\n' | |
'<html>\n' | |
'<body>\n' | |
'<script>\n' | |
'// This script block will trigger a violation report.\n' | |
'alert(\'FAIL\');\n' | |
'</script>\n' | |
'<script src="../resources/go-to-echo-report.js"></script>\n' | |
'</body>\n' | |
'</html>\n' | |
) |