M365 Archive

RM485797 - SharePoint: Content Security Policy Control in Tenant Administration

Microsoft 365 Roadmap

Roadmap ID

485797

View in M365 Roadmap

Status

Launched

Release

General Availability
Targeted Release

Last Updated

Mar 23, 2026

Published Apr 10, 2025

Platforms

Desktop

Service

SharePoint

Tag

Launched
General Availability
Targeted Release
Worldwide (Standard Multi-Tenant)
GCC
GCC High
DoD

Cloud

DoD
GCC
GCC High
Worldwide (Standard Multi-Tenant)

Summary

SharePoint Online Tenant Administrators can now allow script sources for modern pages in SharePoint sites. This is particularly useful in scenarios where modern pages have custom code that load scripts (e.g. TypeScript code) from external sources like CDN. SharePoint will now report to administrators where are loaded from sources that have not been allowed giving administrators a way to identify those sources and take actions. Tenant Administrators can also enforce browsers to only load scripts from allowed sources. This behavior can be enabled using SharePoint Online Management Shell.

Description

SharePoint Online Tenant Administrators can now allow script sources for modern pages in SharePoint sites. This is particularly useful in scenarios where modern pages have custom code that load scripts (e.g. TypeScript code) from external sources like CDN. SharePoint will now report to administrators where are loaded from sources that have not been allowed giving administrators a way to identify those sources and take actions. Tenant Administrators can also enforce browsers to only load scripts from allowed sources. This behavior can be enabled using SharePoint Online Management Shell.

GA date: March CY2025