Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' https://fonts.googleapis.com; img-src http://*.tile.openstreetmap.org https: data:; font-src *.frisbii.com *.billwerk.plus *.reepay.com *.fontawesome.com https://fonts.gstatic.com https://fonts.intercomcdn.com data:; connect-src *.frisbii.com *.billwerk.plus *.reepay.com wss://analytex-eu.userpilot.io https://www.chatbase.co https://*.clarity.ms https://*.google-analytics.com https://*.analytics.google.com https://sessions.bugsnag.com https://*.hubspot.com https://*.hubapi.com https://notify.bugsnag.com *.fontawesome.com https://cdn.segment.com https://api.segment.io https://api-iam.eu.intercom.io wss://nexus-europe-websocket.intercom.io https://api.refiner.io; script-src 'self' *.frisbii.com *.billwerk.plus https://www.chatbase.co https://cdn.jsdelivr.net/npm/marked/marked.min.js https://*.clarity.ms https://editor.unlayer.com https://kit.fontawesome.com https://cdn.announcekit.app https://js.intercomcdn.com https://*.hubspot.com https://*.hs-scripts.com https://js-eu1.hs-analytics.net https://js-eu1.hsadspixel.net https://js.usemessages.com https://js-eu1.hs-banner.com https://www.googletagmanager.com https://kvbgzqc1x1vg.statuspage.io https://www.googleadservices.com https://googleads.g.doubleclick.net https://cdn.segment.com https://www.paypal.com https://www.paypalobjects.com https://widget.intercom.io/widget/gglb96sn https://js.refiner.io/v001/client.js https://connect.facebook.net https://snap.licdn.com; frame-src *.frisbii.com *.billwerk.plus *.reepay.com https://www.chatbase.co https://editor.unlayer.com https://announcekit.app https://www.youtube.com https://changelog.frisbii.com https://changelog.reepay.com https://*.hubspot.com https://kvbgzqc1x1vg.statuspage.io https://app.luzmo.com https://js.refiner.io https://www.googletagmanager.com; object-src 'none'; frame-ancestors 'self'