Content-Security-Policy: default-src 'self' vercel.com *.vercel.com *.vercel.sh vercel.live wss://*.vercel.com localhost:*;script-src 'self' 'unsafe-eval' 'unsafe-inline' www.google.com www.google-analytics.com www.googleadservices.com www.gstatic.com *.youtube.com *.youtube-nocookie.com *.ytimg.com *.twimg.com cdn.ampproject.org www.googletagmanager.com *.googleapis.com *.fides-cdn.ethyca.com *.ethyca.com cdn.ethyca.com cdn.vercel-insights.com va.vercel-scripts.com app.cal.com *.cr-relay.com blob: vercel.com *.vercel.com *.vercel.sh vercel.live localhost:* chrome-extension://*;child-src *.youtube.com *.youtube-nocookie.com *.stripe.com www.google.com td.doubleclick.net github.com calendly.com vercel.cal.com *.codesandbox.io vercel.com *.vercel.com *.vercel.sh vercel.live wss://*.vercel.com localhost:*;style-src 'self' 'unsafe-inline' *.googleapis.com vercel.com *.vercel.com *.vercel.sh vercel.live wss://*.vercel.com localhost:*;img-src * blob: data: https://images.ctfassets.net;media-src 'self' videos.ctfassets.net user-images.githubusercontent.com replicate.delivery stream.mux.com *.mux.com blob: data: vercel.com *.vercel.com *.vercel.sh vercel.live wss://*.vercel.com localhost:*;connect-src 'self' data: vercel.com *.vercel.com *.vercel.sh vercel.live wss://*.vercel.com www.vercel-status.com cdn.vercel-insights.com va.vercel-scripts.com cdp.vercel.com www.google-analytics.com www.googletagmanager.com *.googleapis.com *.cr-relay.com *.ethyca.com cdn.ethyca.com https://*.contentful.com *.algolia.net *.algolianet.com *.upstash.io vercel.cal.com app.cal.com api.vercel.com *.ingest.sentry.io *.ingest.us.sentry.io stream.mux.com *.mux.com *.codesandbox.io react-tweet.vercel.app;font-src 'self' *.vercel.com *.gstatic.com vercel.live *.vercel.sh;worker-src 'self' *.vercel.com blob:;frame-ancestors  'self'  https://vercel.com  https://app.contentful.com  https://*.contentful.com  https://*.vercel.sh  https://*.vercel.com