What does security.csp.reporting.enabled do?

tristan · July 19, 2025, 3:57pm

Hi all!

I found in my Firefox about:config security.csp.reporting.enabled

As I understand, this relates only to reporting and will not affect CSP itself, right?

I didn’t find any documentation about this. So… Can you help me? Is it safe to tweak it to false for stopping “phone-home”?

xe3 · July 19, 2025, 4:49pm

Not an answer to your question but possibly a starting point: when looking up unknown-to-me prefs, when a ddg search doesn’t unearth much, I usually start by searching:

searchfox

# Enable/disable CSP reporting (report-uri and report-to)
- name: security.csp.reporting.enabled
  type: bool
  value: true
  mirror: always

Arkenfox GUI
(no relevant info on this pref)

jonah · July 19, 2025, 11:25pm

It is safe to disable CSP reporting, and there is a description of this feature flag you can find here:

Topic		Replies	Views
PSA: Changes to Firefox and Arkenfox make Canvas Blocker and Smart Referer unnecessary for Arkenfox users who previously used those extensions General browsers	2	543	January 25, 2024
There used to be a website that would list all firefox about:config prefs and explain what each of them did Questions	7	549	March 17, 2025
Firefox 120.0, See All New Features, Updates and Fixes Questions browsers	7	882	November 26, 2023
[Solved] Arkenfox JS General browsers	3	634	August 27, 2024
Question regarding arkenfox Questions	12	1235	June 21, 2024

What does security.csp.reporting.enabled do?

Related topics