Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' data: https://internetcomputer.matomo.cloud; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' data: https://*.internetcomputer.org https://*.basemaps.cartocdn.com https://*.githubusercontent.com https://*.ctfassets.net; font-src 'self' data: https://fonts.gstatic.com; connect-src 'self' https://*.internetcomputer.org https://ic0.app https://internetcomputer.matomo.cloud https://*.githubusercontent.com; frame-src 'self'; object-src 'none'; media-src 'self'; child-src 'self'; frame-ancestors 'self'; form-action 'self'; base-uri 'self'; manifest-src 'self'; worker-src 'self';