A CSP that blocks your analytics script in production is a silent data leak. The audit cross-references what the page loads against what the CSP permits, catching allowlist gaps before users see console errors.
Read the story behind this tool: Why this tool exists — fixes2.txt audit.
Related: Security tool stack