Content-Security-Policy Analysis for https://datastudio.google.com

Open Cached · just now

4 directives

Content-Security-Policy

Content-Security-Policy: base-uri 'none'; object-src 'none'; script-src 'strict-dynamic' 'unsafe-inline' https: http: 'nonce-yEpnCy/JUzbF5goiqR6E0o993tzIE3'

base-uri Keyword —

'none'

object-src Keyword —

'none'

script-src Keyword —

'strict-dynamic'

script-src Keyword —

'unsafe-inline'

script-src Scheme —

https:

script-src Scheme —

http:

script-src Nonce —

'nonce-yEpnCy/JUzbF5goiqR6E0o993tzIE3'

Content-Security-Policy-Report-Only

Content-Security-Policy-Report-Only: require-trusted-types-for 'script'

require-trusted-types-for Keyword —

'script'