Get Around CORS - Bypass CORS & Unblock CSP

About

top fighting CORS errors and start building!

"Get Around CORS" is the ultimate productivity tool for web developers. It allows you to bypass Cross-Origin Resource Sharing (CORS) and Content Security Policy (CSP) restrictions with a single click, enabling you to test APIs, integrate remote resources, and debug cross-domain issues without complex server setups or proxying.

Key Features:

Instant CORS Bypass: Automatically adds Access-Control-Allow-Origin: * and other necessary headers to all responses.
Dynamic Origin Matching: Intelligent logic ensures that requests with credentials (cookies) succeed by matching the Access-Control-Allow-Origin to the requester's domain.
Unblock CSP: Strip strict Content-Security-Policy headers to allow restricted scripts, styles, and data locally.
Iframe Freedom: Removes X-Frame-Options to permit embedding any page during development.
Manifest V3 Powered: Built using the latest declarativeNetRequest API for maximum performance and user privacy.
Premium Dark UI: A sleek, minimal, and glassmorphism-inspired interface that looks great in your developer workflow.
Perfect for:

Developers testing APIs that don't yet have CORS configured.
Front-end engineers prototyping with third-party data.
Testers verifying site behavior under various cross-origin conditions.
⚠️ Security Note: This extension is intended for development and testing purposes only. It should be disabled during regular browsing to maintain standard browser security.

Permission Justifications
declarativeNetRequest: Required to modify response headers (Access-Control-Allow-Origin, CSP, etc.) in real-time without slowing down your browser. This is the most secure and performant way to bypass CORS in Manifest V3.
storage: Used to persist the "Enabled/Disabled" state of the extension so it remains active across browser restarts.
activeTab: Allows the extension to read the current tab's URL to perform dynamic origin matching for credentialed requests.