Content-Security-Policy: default-src 'self'; connect-src 'self' 'unsafe-inline' https://*.masterplan.com https://customer-qqv9dy4gjtd32v0z.cloudflarestream.com https://*.icanhazip.com https://*.litix.io https://*.logrocket.com https://*.logrocket.io https://*.lr-ingest.io https://*.nr-data.net https://*.userpilot.io https://*.wistia.com https://*.wistia.net https://*.zdassets.com https://*.zendesk.com https://*.zopim.com https://*.posthog.com https://api.knock.app https://api.mixpanel.com https://bam.eu01.nr-data.net https://consent.cookie-script.com https://embedwistia-a.akamaihd.net https://masterplancom.matomo.cloud https://media.masterplan.com https://o74727.ingest.sentry.io https://plausible.io https://res.cloudinary.com https://s3.eu-central-1.amazonaws.com https://sentry.io https://stats.g.doubleclick.net https://translate.googleapis.com https://www.google-analytics.com https://www.googletagmanager.com https://www.linkedin.com https://api.openai.com wss://*.userpilot.io wss://*.zendesk.com wss://*.zopim.com wss://api.knock.app https://*.app.masterplan.com; font-src 'self' data: https://*.bootstrapcdn.com https://*.wistia.com https://*.wistia.net https://*.zopim.com https://fonts.gstatic.com https://media.masterplan.com; frame-src 'self' blob: data: https:; img-src 'self' blob: data: https:; media-src 'self' blob: data: https://customer-qqv9dy4gjtd32v0z.cloudflarestream.com https://*.wistia.com https://*.wistia.net https://embedwistia-a.akamaihd.net https://media.masterplan.com https://res.cloudinary.com https://s3.eu-central-1.amazonaws.com; object-src 'none'; script-src 'unsafe-inline' https: 'nonce-hENOCqMy5bjKZh1UkLpJQg==' 'strict-dynamic'; style-src 'self' 'unsafe-inline' data: https:; worker-src 'self' blob: data:; child-src 'self' blob: data:; base-uri 'self';