Content Security Policy (CSP) is a browser security mechanism with the potential to significantly mitigate XSS and content injection attacks when properly implemented on websites. This article will focus on a basic explanation of what CSP is and conceptually how it works. It is not an implementation guide.
Most web site owners have known for some time that they really should be upgrading their sites to be "mobile friendly", meaning to make it load, display and function well on all types of mobile devices in addition to desktop computers. Now, however, there is an unrefutable, undeniable reason to make your web site play nice with mobile devices.