Content-Security-Policy: frame-ancestors 'none'; default-src 'self'; script-src 'self' https://api.mapbox.com https://*.auth0.com https://api-js.mixpanel.com;  worker-src 'self' blob: https://api.mapbox.com/mapbox-gl-js/v2.15.0/mapbox-gl-csp-worker.js;  style-src 'self' 'unsafe-inline' https://api.mapbox.com;  connect-src 'self' https://at-spatial-dev-as.azurewebsites.net https://overpass-api.de https://atpddevreportseastus.blob.core.windows.net https://*.mapbox.com https://*.auth0.com https://*.lambentspaces.app https://api-js.mixpanel.com https://atpddevsteastus.blob.core.windows.net data:;img-src 'self' data: https://*.mapbox.com https://lh3.googleusercontent.com; font-src 'self' data:; frame-src https://*.auth0.com; form-action 'none';