Content security policy: While not technically part of HTML5, content security policy (CSP) is used in tandem with it to specify which sources browsers should consider valid for images, scripts, stylesheets, and more. This helps to reduce the risk of attackers performing cross-site scripting (X...