| #!/usr/bin/env python3 | |
| import sys | |
| sys.stdout.write( | |
| 'Content-Security-Policy: default-src \'self\'; report-uri ../resources/save-report.py\r\n' | |
| 'Content-Type: text/html\r\n\r\n' | |
| '<!DOCTYPE html>\n' | |
| '<html>\n' | |
| '<body>\n' | |
| '<script>\n' | |
| '// This script block will trigger a violation report.\n' | |
| 'alert(\'FAIL\');\n' | |
| '</script>\n' | |
| '<script src="../resources/go-to-echo-report.js"></script>\n' | |
| '</body>\n' | |
| '</html>\n' | |
| ) |