@modelcontextprotocol/ext-apps - v1.1.2
    Preparing search index...

    Variable McpUiResourceCspSchemaConst

    McpUiResourceCspSchema: ZodObject<
        {
            baseUriDomains: ZodOptional<ZodArray<ZodString>>;
            connectDomains: ZodOptional<ZodArray<ZodString>>;
            frameDomains: ZodOptional<ZodArray<ZodString>>;
            resourceDomains: ZodOptional<ZodArray<ZodString>>;
        },
        $strip,
    > = ...

    Content Security Policy configuration for UI resources.

    Servers declare which origins their UI requires. Hosts use this to enforce appropriate CSP headers.

    Important

    MCP App HTML runs in a sandboxed iframe with no same-origin server. All origins must be declared—including where your bundled JS/CSS is served from (localhost in dev, your CDN in production).

    Settings

    Member Visibility