Content-Security-Policy: default-src 'self'; frame-ancestors 'self' https://*.carahsoft.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; report-to csp-endpoint; script-src 'self' 'unsafe-inline' 'unsafe-eval' http://code.tidio.co https://code.tidio.co https://www.youtube.com https://connect.facebook.net https://platform.twitter.com https://platform.linkedin.com https://linkedin.com https://www.gstatic.com https://www.google.com https://www.googletagmanager.com https://livechat.carahsoft.com https://snap.licdn.com https://cdn.digitalreachagency.com https://cdn.mida.so https://googleads.g.doubleclick.net https://extend.vimeocdn.com; font-src 'self' https://code.tidio.co https://fonts.gstatic.com data:; img-src 'self' https://www.linkedin.com https://www.googletagmanager.com *.carahsoft.com https://px.ads.linkedin.com https://www.google.com https://avatars.tidiochat.com https://tidio-files-prod.s3.eu-west-1.amazonaws.com data:; frame-src 'self' *.carahsoft.com https://player.vimeo.com https://www.youtube.com https://www.googletagmanager.com https://td.doubleclick.net https://www.google.com https://platform.twitter.com https://www.facebook.com https://outlook.office365.com https://outlook.office.com; object-src 'self' *.carahsoft.com; connect-src https://code.tidio.co https://www.googleadservices.com https://www.googletagmanager.com wss://socket.tidio.co https://api.mida.so https://api-us.mida.so https://www.google-analytics.com https://www.google.com https://px.ads.linkedin.com https://sessions.bugsnag.com *.carahsoft.com; media-src https://code.tidio.co;