Charting app TradingView is enhancing security, as it plans to steadily apply Content Security Policy (CSP).

CSP is a security measure prohibiting scripts from untrustworthy sources. This will significantly reduce the opportunity for hackers to steal data or do anything untoward to or from users’ accounts unnoticed.

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement to distribution of malware.

CSP is designed to be fully backward compatible. Browsers that do not support it still work with servers that implement it, and vice-versa: browsers that do not support CSP ignore it, functioning as usual, defaulting to the standard same-origin policy for web content. If the site does not offer the CSP header, browsers likewise use the standard same-origin policy.

Let’s also note that, starting at the end of 2020, TradingView revised its protected connection (HTTPS) and unplugged all of the outdated and unsafe encryptions from the servers.

TradingView regularly updates and enhances its services. In December 2020, the (beta) launch of the TradingView Desktop platform was announced. The desktop platform offers native multi-monitor support, as well as more speed and efficiency.