Content-Security-Policy: report-uri https://api.sunbit.com/sampling/api/v1/csp-reports?application=checkout&env=dev; frame-ancestors *; script-src 'self' https://fpnpmcdn.net *.sunbit.com *.sunbit.in *.sunbit.dev *.google.com *.googletagmanager.com *.google-analytics.com *.datadoghq-browser-agent.com *.neuro-id.com *.iesnare.com *.gstatic.com 'sha256-4eoJdNCLP4ehJ/z0viW8j1uhWF6GwYTge08wq/JagWg=' 'sha256-LI6/9WHsD8MI7I2Ir85mK42RmUzh+pla8prnZ7fB2SI=' 'sha256-IDARnE18bZBkDcqEoViv7gSjudXkhDg5GLuSB1nTjUM=' 'sha256-Cs4kZ4vM40W/yROhLZq/g/LedqdEMlfNKkWxAuBPOww=' 'sha256-FTY2w+3aCulqBisVwmbNiMwY3rB6HeQGRALIWhVuBI8=' 'sha256-gz3cezvmDPTb6c7GB8dvsflwzXsex3ztdXvV5pjmvkI=' 'sha256-49f0iMYGGE2Z8UFW4S7m1RiKlEbthbK6ZQIIJfyIO0k=' 'unsafe-eval' sunbit-dev-static.s3-us-west-1.amazonaws.com; frame-src blob: *.google.com *.sunbit.com *.sunbit.in *.sunbit.dev *.moneydesktop.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.gstatic.com; child-src *.googletagmanager.com blob:; img-src 'self' data: blob: *.googletagmanager.com *.google-analytics.com *.google.com *.sunbit.com *.gstatic.com; font-src 'self' *.gstatic.com *.typekit.net; connect-src 'self' ws: https://events.launchdarkly.com https://app.launchdarkly.com https://clientstream.launchdarkly.com about: http://api *.sunbit.com *.sunbit.in *.sunbit.dev *.google.com *.browser-intake-datadoghq.com *.datadoghq.com *.google-analytics.com *.googletagmanager.com *.datadoghq.eu *.fpapi.io *.fptls.com *.fptls2.com *.fptls3.com *.sunbit.dev/datadog-intake *.sunbit.com/datadog-intake *.sunbit.in/datadog-intake sunbit-api-gateway-public/datadog-intake wss://mpsnare.iesnare.com; worker-src blob:; media-src https://mpsnare.iesnare.com;