Content-Security-Policy: script-src 'self' https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://dj7g6j18zumzq.cloudfront.net 'sha256-BqGlmYGp18GWd4EMv833vyz3H20BA/rLJS3n2tvHfeI='; child-src 'none'; frame-src https://www.google.com/recaptcha/ https://recaptcha.google.com/recaptcha/ https://www.figma.com https://*.invisionapp.com https://invis.io https://miro.com https://whimsical.com https://www.loom.com https://www.youtube.com https://player.vimeo.com https://fast.wistia.com https://www.canva.com https://xd.adobe.com https://*.looker.com https://lucid.app https://*.qualtrics.com https://*.okta.com; object-src 'none'; frame-ancestors 'none';