Content-Security-Policy: default-src https: 'unsafe-inline' 'unsafe-eval'; style-src https: 'unsafe-eval' 'unsafe-inline' https://static.hotjar.com https://script.hotjar.com; img-src https: data: blob: https://images.solvemate.com https://static.zdassets.com https://accounts.zendesk.com https://*.zendesk.com https://media.smooch.io https://*.zdusercontent.com https://static.hotjar.com https://script.hotjar.com ; script-src https: blob: 'unsafe-inline' 'unsafe-eval' https://static.hotjar.com https://script.hotjar.com https://static.zdassets.com https://ekr.zdassets.com https://ekr.zendesk.com https://*.zendesk.com https://api.smooch.io https://media.smooch.io https://zendesk-eu.my.sentry.io https://*.twilio.com wss://*.zendesk.com wss://api.smooch.io wss://voice-js.roaming.twilio.com; connect-src https: blob: 'unsafe-inline' 'unsafe-eval' https://*.hotjar.com https://*.hotjar.io wss://*.hotjar.com https://static.hotjar.com https://script.hotjar.com https://static.zdassets.com https://ekr.zdassets.com https://ekr.zendesk.com https://*.zendesk.com https://api.smooch.io https://media.smooch.io https://zendesk-eu.my.sentry.io https://*.twilio.com wss://*.zendesk.com wss://api.smooch.io wss://voice-js.roaming.twilio.com; frame-src https: 'unsafe-inline' 'unsafe-eval' https://vars.hotjar.com; font-src https: 'unsafe-inline' 'unsafe-eval' https://script.hotjar.com; object-src 'none'