Content-Security-Policy: child-src 'self' app.pendo.io; connect-src 'self' api.bitsight.com api.bitsighttech.com api.feedback.us.pendo.io app.pendo.io data.analytics.bitsight.com data.analytics.bitsighttech.com data.pendo.io https://*.analytics.google.com https://*.browser-intake-datadoghq.com https://*.google-analytics.com https://*.googletagmanager.com https://*.trayapp.io https://*.wistia.com https://*.zopim.com https://bitsight.zendesk.com https://ekr.zdassets.com https://ekr.zendesk.com https://embedwistia-a.akamaihd.net https://rum-http-intake.logs.datadoghq.com https://static.zdassets.com https://www.datadoghq-browser-agent.com https://zendesk-eu.my.sentry.io pendo-static-5114017034534912.storage.googleapis.com pendo-static-5668600916475904.storage.googleapis.com qa.telemetry.tableausoftware.com translate.googleapis.com wss://*.zopim.com wss://bitsight.zendesk.com; default-src 'self' https://*.wistia.com https://*.wistia.net https://calendly.com/; font-src 'self' data: https://*.wistia.com https://fonts.gstatic.com; form-action 'self' bitsight.zendesk.com help.bitsight.com help.bitsighttech.com https://*.cybersixgill.com; frame-ancestors 'self' app.pendo.io; frame-src 'self' app.pendo.io https://*.forethought.ai https://bitsight-test.chargebee.com/ https://bitsight.chargebee.com/ https://calendly.com/ https://fast.wistia.com https://fast.wistia.net https://www.g2.com www.bitsight.com www.bitsighttech.com; img-src 'self' api.atlassian.com app.pendo.io cdn.pendo.io content.analytics.bitsight.com content.analytics.bitsighttech.com data.analytics.bitsight.com data.analytics.bitsighttech.com data.pendo.io data: https://*.google-analytics.com https://*.googletagmanager.com https://*.wistia.com https://*.wistia.net https://cdn-images.mailchimp.com/icons/social-block-v2/ https://cembedwistia-a.akamaihd.net https://embedwistia-a.akamaihd.net https://mcusercontent.com/c13ff7d10a38228651e1889ed/images/ https://static.zdassets.com https://v2assets.zopim.io is1-ssl.mzstatic.com is2-ssl.mzstatic.com is3-ssl.mzstatic.com is4-ssl.mzstatic.com is5-ssl.mzstatic.com itms8-imageservice.itunes.apple.com lh3.ggpht.com lh3.googleusercontent.com lh4.ggpht.com lh5.ggpht.com lh6.ggpht.com pendo-static-5114017034534912.storage.googleapis.com pendo-static-5668600916475904.storage.googleapis.com play-lh.googleusercontent.com s3.amazonaws.com s3.eu-west-1.amazonaws.com translate.google.com translate.googleapis.com; media-src 'self' blob: data: https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net https://static.zdassets.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' app.pendo.io cdn.pendo.io content.analytics.bitsight.com content.analytics.bitsighttech.com data.analytics.bitsight.com data.analytics.bitsighttech.com data.pendo.io https://*.forethought.ai https://*.googletagmanager.com https://*.wistia.com https://*.wistia.net https://*.zopim.com https://assets.calendly.com https://bitsight.zendesk.com https://ekr.zdassets.com https://ekr.zendesk.com https://js.chargebee.com/v1/chargebee.js https://js.chargebee.com/v2/chargebee.js https://ssl.google-analytics.com https://static.zdassets.com https://www.datadoghq-browser-agent.com https://www.google-analytics.com https://zendesk-eu.my.sentry.io pendo-io-static.storage.googleapis.com pendo-static-5114017034534912.storage.googleapis.com pendo-static-5668600916475904.storage.googleapis.com translate-pa.googleapis.com translate.google.com translate.googleapis.com wss://*.zopim.com wss://bitsight.zendesk.com; style-src 'self' 'unsafe-inline' app.pendo.io blob: cdn.pendo.io content.analytics.bitsight.com content.analytics.bitsighttech.com https://assets.calendly.com https://bitsight.chargebee.com/assets/hp_v3/iframe_views/ https://fonts.googleapis.com pendo-static-5114017034534912.storage.googleapis.com pendo-static-5668600916475904.storage.googleapis.com translate.googleapis.com; worker-src 'self' blob:; report-uri https://bitsight.report-uri.com/r/d/csp/enforce