Content-Security-Policy-Report-Only: default-src 'self' 'report-sample'; block-all-mixed-content; script-src 'self' 'unsafe-eval' 'unsafe-inline' 'report-sample' 'wasm-unsafe-eval' blob: https://accounts.google.com https://googleads.g.doubleclick.net https://static.hsappstatic.net https://www.youtube.com https://o811799.ingest.us.sentry.io https://vercel.live https://widget.usepylon.com; child-src 'self' blob: https://www.youtube.com; frame-src 'self' https://www.youtube.com https://td.doubleclick.net https://scribehow.com https://storage.googleapis.com https://vercel.live https://view.officeapps.live.com https://portal.usepylon.com https://pluto.releasenotes.io https://vitessce.svc.pluto.bio https://vitessce.svc.pluto-dev.bio https://vitessce.svc.pluto.bio https://www.ncbi.nlm.nih.gov; style-src 'self' 'unsafe-inline' 'report-sample' https://vercel.live https://fonts.googleapis.com https://*.usepylon.com; img-src 'self' localhost:3000 data: blob: https://pluto.bio https://cache.pluto.bio https://cache-staging.pluto.bio https://cdn.bfldr.com https://www.google.com https://storage.googleapis.com https://lh3.googleusercontent.com https://images.ctfassets.net https://cdn.genecards.org https://avatars.slack-edge.com https://vercel.com https://*.usepylon.com https://help.pluto.bio https://pylon-avatars.s3.us-west-1.amazonaws.com https://d3vl36l12sfx26.cloudfront.net https://avatars.slack-edge.com https://downloads.intercomcdn.com; connect-src 'self' *.pluto.bio pluto.bio localhost:3000 localhost:8080 https://dev-api.pluto.bio https://api.pluto.bio https://www.googleapis.com https://login.microsoftonline.com https://googleads.g.doubleclick.net https://adservice.google.com https://www.google.com https://cdn.contentful.com https://images.ctfassets.net https://preview.contentful.com https://igv.org https://s3.amazonaws.com https://igv-genepattern-org.s3.amazonaws.com https://hgdownload.soe.ucsc.edu https://storage.googleapis.com https://connect.facebook.net https://mygene.info https://ws-us3.pusher.com https://api.linkpreview.net https://vitals.vercel-insights.com https://o811799.ingest.us.sentry.io https://eutils.ncbi.nlm.nih.gov https://fonts.gstatic.com https://api.openai.com https://raw.githubusercontent.com/igvteam https://*.usepylon.com wss://dev-api.pluto.bio wss://staging-api.pluto.bio wss://api.pluto.bio ws://127.0.0.1:8080 https://*.usepylon.com wss://*.pusher.com; font-src 'self' https://vercel.live https://fonts.gstatic.com https://*.usepylon.com; worker-src 'self' blob:; report-uri https://61f84abc4ac1af58c4163a0d.endpoint.csper.io/?v=12122023; report-to default;