Open
Cached
·
just now
6
directives
Content-Security-Policy
Content-Security-Policy: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/docs-tt, frame-ancestors 'self' https://docs.google.com, base-uri 'self';object-src 'self';report-uri https://doc-14-1s-sheets.googleusercontent.com/spreadsheets/cspreport;script-src 'report-sample' 'nonce-Z2aldvBYL4hXX_UaJZUpbw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';worker-src 'self' blob:
require-trusted-types-for
Keyword
—
'script'
report-uri
Host
—
report-uri
Keyword
—
'self'
report-uri
Host
—
report-uri
Host
—
report-uri
Keyword
—
'self'
object-src
Keyword
—
'self'
script-src
Keyword
—
'report-sample'
script-src
Nonce
—
'nonce-Z2aldvBYL4hXX_UaJZUpbw'
script-src
Keyword
—
'unsafe-inline'
script-src
Keyword
—
'strict-dynamic'
script-src
Scheme
—
https:
script-src
Scheme
—
http:
script-src
Keyword
—
'unsafe-eval'
worker-src
Keyword
—
'self'
worker-src
Scheme
—
blob:
Content-Security-Policy-Report-Only
No report-only CSP headers found.