Content-Security-Policy: script-src 'self' 'unsafe-eval' *;      style-src 'self' 'unsafe-inline';      font-src 'self' https://fonts.gstatic.com https://cdn.auth0.com data:;      frame-ancestors 'self';      frame-src https://carboncloud.atlassian.net/ https://apps.carboncloud.com/ https://*.hubspot.com https://cdn.linkedin.oribi.io;      img-src 'self' https://*.carboncloud.com/ https://*.matomo.cloud/ https://ik.imagekit.io/ https://*.gravatar.com/ https://*.wp.com/cdn.auth0.com/ https://*.hsforms.com https://*.hubspot.com https://cdn.auth0.com data:;      connect-src 'self' http://localhost:9006/ \                         https://*.carboncloud.com/ \                         https://*.matomo.cloud/ \                         http://*.matomo.cloud/ \                         https://*.auth0.com/ \                         https://api.locationiq.com/ \                         https://jsd-widget.atlassian.com/ \                         https://api-private.atlassian.com/ \                         https://*.hubspot.com \                         https://*.hubapi.com \                         https://*.internal.test.carboncloud.io;      default-src 'self';