Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' cdn.jsdelivr.net *.cloudfront.net *.brightcove.com *.lrcontent.com *.bootstrapcdn.com hello.myfonts.net *.brightcove.net vjs.zencdn.net *.google-analytics.com *.googletagmanager.com *.jquery.com *.cloudflare.com *.matomo.cloud *.cookielaw.org *.sketchfab.com *.baxterdigital.net *.gstatic.com *.gstatics.com *.onetrust.com *.ceros.com *.hillrom.com *.microsoft.com login.doccheck.com surveys.baxter.com hrcm.indg.net snap.licdn.com *.crazyegg.com pagead2.googlesyndication.com *.g.doubleclick.net wisepops.net *.wisepops.net *.wisepops.com *.adsrvr.org js.zi-scripts.com connect.facebook.com connect.facebook.net *.zscloud.net *.clickagy.com www.youtube.com blob: *.windows.net *.trackify.info *.qualtrics.com *.pages06.net *.coremetrics.com *.pardot.com *.cloudflare.com; connect-src 'self' 'unsafe-inline' cdn.jsdelivr.net *.googleapis.com *.lrcontent.com *.cloudfront.net api.loginradius.com *.lrcontent.com *.bootstrapcdn.com *.boltdns.net *.brightcove.net edge.api.brightcove.com *.akamaihd.net *.brightcovecdn.com *.google-analytics.com *.analytics.google.com *.googletagmanager.com *.sketchfab.com *.baxterdigital.net *.ceros.com *.cookielaw.org *.onetrust.com *.gstatic.com *.hillrom.com *.microsoft.com login.doccheck.com surveys.baxter.com hrcm.indg.net *.matomo.cloud *.google.com *.google.com.mx pagead2.googlesyndication.com px.ads.linkedin.com *.crazyegg.com *.g.doubleclick.net *.doubleclick.net wisepops.net *.wisepops.net *.wisepops.com *.adsrvr.org js.zi-scripts.com connect.facebook.com ws.zoominfo.com *.clickagy.com *.windows.net *.zscloud.net *.qualtrics.com *.pages06.net *.coremetrics.com *.pardot.com *.cloudflare.com baxter-stability-default-rtdb.asia-southeast1.firebasedatabase.app; img-src 'self' 'unsafe-inline' data: *.bootstrapcdn.com *.brightcove.net *.cloudfront.net *.boltdns.net *.akamaihd.net *.brightcove.com *.brightcovecdn.com *.google-analytics.com *.googletagmanager.com *.sketchfab.com *.baxterdigital.net *.ceros.com *.cookielaw.org *.gstatic.com *.gstatics.com *.hillrom.com *.microsoft.com login.doccheck.com surveys.baxter.com px.ads.linkedin.com pagead2.googlesyndication.com *.google.com *.google.com.mx *.wisepops.net *.onetrust.com *.adsrvr.org *.clickagy.com us-u.openx.net idsync.rlcdn.com dpm.demdex.net pixel-sync.sitescout.com cm.g.doubleclick.net *.agkn.com i.ytimg.com *.wisepops.com *.doubleclick.net *.zscloud.net *.qualtrics.com *.pages06.net *.coremetrics.com *.pardot.com *.cloudflare.com; style-src 'self' 'unsafe-inline' *.cloudfront.net *.bootstrapcdn.com *.brightcove.net *.googleapis.com hello.myfonts.net *.gstatic.com *.gstatics.com *.onetrust.com surveys.baxter.com *.googletagmanager.com *.wisepops.net *.zscloud.net *.pardot.com *.cloudflare.com; frame-src 'self' 'unsafe-inline' *.pages06.net youtube.com www.youtube.com *.brightcove.net *.bootstrapcdn.com *.baxterglobal.com https://sketchfab.com https://wisepops.net *.hillrom.com *.ceros.com *.baxterdigital.net *.cookielaw.org *.microsoft.com *.hillrom.com *.doccheck.com surveys.baxter.com *.googletagmanager.com *.wisepops.net *.adsrvr.org *.doubleclick.net *.zscloud.net *.pardot.com *.cloudflare.com *.matomo.cloud; media-src 'self' blob: *.brightcovecdn.com *.boltdns.net *.media.brightcove.com *.akamaihd.net *.cf.brightcove.com *.sketchfab.com *.baxterdigital.net *.ceros.com *.hillrom.com *.cookielaw.org *.microsoft.com login.doccheck.com surveys.baxter.com *.wisepops.net; font-src 'self' 'unsafe-inline' data: *.bootstrapcdn.com *.cloudfront.net *.brightcove.net *.onetrust.com *.gstatic.com *.gstatics.com; worker-src blob:; child-src 'self' *.google.com *.google.com.mx; object-src 'self' ; frame-ancestors 'self';