Content-Security-Policy: default-src 'none';              img-src 'self' https://testing.developer.gimp.org https://developer.gimp.org https://blogs.gnome.org;              style-src 'self';              script-src 'self' https://www.openhub.net;              font-src 'self';              child-src 'self' https://peer.tube https://www.openhub.net https://www.youtube.com https://www.youtube-nocookie.com https://video.blender.org;              object-src 'none';              media-src 'self' https://download.gimp.org https://download-fallback.gimp.org https://www.mirrorservice.org https://*.ftp.acc.umu.se https://ftp.rrze.uni-erlangen.de;              base-uri 'self';              form-action 'self' https://www.paypal.com https://gitlab.gnome.org https://duckduckgo.com;              frame-ancestors 'self';