Content-Security-Policy: script-src 'self'  blob: luzmo.com *.luzmo.com cumul.io *.cumul.io browser.sentry-cdn.com js.sentry-cdn.com cdn.inspectlet.com static.hotjar.com script.hotjar.com uploads.slaask.com cdn.slaask.com slaask.com ws.pusherapp.com stats.pusher.com *.pusher.com connect.facebook.net *.googleapis.com *.youtube.com s.ytimg.com www.googletagmanager.com www.google-analytics.com *.googleadservices.com fonts.gstatic.com static.doubleclick.net googleads.g.doubleclick.net apis.google.com static.ads-twitter.com api.maptiler.com *.bing.com checkout.stripe.com sjs.bizographics.com cookiehub.net *.hs-banner.com *.hs-scripts.com *.hsadspixel.net *.hs-analytics.net snap.licdn.com js.userflow.com ws.zoominfo.com cdn.dreamdata.cloud app.luzmo.com https://app.luzmo.com 'unsafe-inline'; img-src * data: blob:; media-src *; worker-src blob:;