Content-Security-Policy (CSP) is a security standard implemented by web browsers to help prevent a range of attacks, such as Cross-Site Scripting (XSS) and data injection. By defining a set of rules in the HTTP headers or HTML meta tags, CSP allows website owners to control which resources like scripts, styles, and images can be loaded and executed on their web pages. This reduces the risk of malicious content being injected and executed, thereby enhancing the overall security of the website. Properly configuring a CSP is an essential step in safeguarding modern web applications against common vulnerabilities.