SecurityPolicyViolationEvent: violatedDirective property

The violatedDirective read-only property of the SecurityPolicyViolationEvent interface is a string representing the Content Security Policy (CSP) directive that was violated.

This is a historical alias of SecurityPolicyViolationEvent.effectiveDirective, and has the same value.

Value

A string representing the Content-Security-Policy directive that was violated.

Examples

js
document.addEventListener("securitypolicyviolation", (e) => {
  console.log(e.violatedDirective);
});

Specifications

Specification
Content Security Policy Level 3
# dom-securitypolicyviolationevent-violateddirective

Browser compatibility

BCD tables only load in the browser