It feels like just about every new website these days uses Tailwind CSS, and this one’s no exception. I wanted a quick way to make my articles more readable (larger text, better spacing, and so on), and it turns out Tailwind has a built-in Typography plugin. Perfect. However, I did run into one issue worth discussing.
The buzz around TanStack Start has really taken off since its recent RC release. I’ve been using it for a while (this very site runs on it!), and the latest version brings tons of improvements. One area that’s still a bit under-documented is how to configure a solid Content Security Policy (CSP) to mitigate security threats. The good news: with TanStack Start’s new middleware support, setting up CSP is now straightforward. In this post, I’ll walk through the approach I’ve been using.
Front-End Engineer. Self-proclaimed React & TypeScript specialist. Big on web standards and performance. Exploring AI and Vibe Coding my way to productivity.
