CSP Readiness

This is a test page to show how ready your browser is in it's Content Security Policy support.
Currently tests img, object, script, style and iframe + inline and eval

Version 1.1 - Based on latest spec at w3c. Is using Content-Security-Policy
Version 1.1 with prefixed headers - Based on latest spec at w3c.
1.0 with proper header name - Based on the 1.0 spec at w3c. Is using Content-Security-Policy as the header name.
1.0 with old headers - almost up to the 1.0 spec but still using the "X-" prefixed header names for Chrome and FF. default-src - options removed - is now 'unsafe-inline' and 'unsafe-eval'
Intermediate - default-src and disable-xss-protection - based on an intermediate version of the spec
Firefox style - allow instead of default-src, inline-script instead of disable-xss-protection