"Reporting API：违规与弃用上报端点配置"

概述Reporting API 允许浏览器将站点的违规与事件（如 CSP 违规、弃用、崩溃、网络错误）发送到配置的端点，便于监控与治理。可通过 `Report-To`（旧）或 `Reporting-Endpoints`（新）配置。示例Report-To: {"group":"default","max_age":10800,"endpoints":[{"url":"https://report.example.com/endpoint"}]} Reporting-Endpoints: default="https://report.example.com/endpoint" 服务端接收（示意）POST /endpoint Content-Type: application/reports+json [{ "type": "csp-violation", "age": 12, "url": "https://example.com", "body": { /* ... */ }}] 工程建议分组与保留：设置合理 `max_age` 与分组；避免过量上报导致成本增加。隐私与合规：不收集敏感个人信息；妥善存储与清理。灰度与验证：先在报告仅模式（如 `Content-Security-Policy-Report-Only`）下验证策略，逐步收紧。参考与验证MDN Reporting API 文档：https://developer.mozilla.org/docs/Web/API/Reporting_APIweb.dev 报告与监测指南：https://web.dev/articles/reporting-apiChrome 平台文档：https://developer.chrome.com/docs/web-platform/reporting-api/