Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' data: blob: *.value-domain.com *.googleapis.com *.googletagmanager.com *.google-analytics.com  *.jquery.com *.ud-sandbox.com unstoppabledomains.com *.stripe.com *.gmo.jp cdn.jsdelivr.net siteseal.gmo-cybersecurity.com translate.google.com www.gstatic.com connect.facebook.net s.yimg.jp static-fe.payments-amazon.com *.cloudfront.net payments.amazon.co.jp *.amazon.com auth.login.yahoo.co.jp cdnjs.cloudflare.com fonts.gstatic.com *.zopim.com *.zdassets.com wss: *.zopim.io cdn.datatables.net  *.google.com gmo-cybersecurity.com *.epsilon.jp *.webmoney.ne.jp *.ssl-images-amazon.com *.media-amazon.com cdn.polyfill.io platform.twitter.com kit.fontawesome.com *.globalsign.com *.doubleclick.net *.ads-twitter.com *.ebis.ne.jp minerva-deliver.sp.gmossp-sp.jp analytics.twitter.com t.co minerva-js.sp.gmossp-sp.jp *.yahoo.co.jp *.google.co.jp www.facebook.com analytics.google.com www.googleadservices.com *.fontawesome.com unpkg.com maxcdn.bootstrapcdn.com oss.maxcdn.com *.clarity.ms *.googlesyndication.com ajax.cloudflare.com c.bing.com *.docsbot.ai docsbot.ai *.youtube.com  *.fullstar10.com *.amazonaws.com mpsnare.iesnare.com static.cloudflareinsights.com analytics.ahrefs.com chatsupprot.zendesk.com www.googleadservices.com analytics.google.com stats.g.doubleclick.net ;