Content-Security-Policy: base-uri 'self'; default-src 'none'; font-src 'self' https://fonts.gstatic.com; form-action https://gorillini-dev.zendesk.com https://gorillini-test.zendesk.com https://gorillini-int.zendesk.com https://gorillini-stag.zendesk.com https://gorillini.zendesk.com https://support-dev.gorilla.co https://support-test.gorilla.co https://support-int.gorilla.co https://support-stag.gorilla.co https://support.gorilla.co; frame-ancestors 'none'; img-src 'self' data: https://static.zdassets.com https://*.zendesk.com https://media.smooch.io https://*.zdusercontent.com; connect-src 'self' https://*.s3.amazonaws.com https://cognito-idp.eu-west-1.amazonaws.com https://auth.gorilla.co/oauth2/token https://auth.gorilla.co/oauth2/revoke https://*.nr-data.net https://*.zdassets.com https://*.zendesk.com https://*.smooch.io https://*.twilio.com wss://*.zendesk.com wss://api.smooch.io wss://voice-js.roaming.twilio.com https://status.gorilla.co; script-src 'self' 'unsafe-inline' https://js-agent.newrelic.com https://*.nr-data.net https://*.zdassets.com https://*.zendesk.com https://*.smooch.io https://zendesk-eu.my.sentry.io https://*.twilio.com wss://*.zendesk.com wss://api.smooch.io wss://voice-js.roaming.twilio.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; manifest-src 'self'; frame-src https://www.loom.com https://*.quicksight.aws.amazon.com; media-src https://static.zdassets.com