Content-Security-Policy: default-src 'self' 'unsafe-inline' js.checkout.com; connect-src 'self' js.checkout.com api.checkout.com *.api.checkout.com risk.checkout.com fpjs.checkout.com api.sandbox.checkout.com *.api.sandbox.checkout.com risk.sandbox.checkout.com fpjs.sandbox.checkout.com; script-src-elem 'self' 'unsafe-inline' js.checkout.com fpjsworker.checkout.com fpnpmcdn.net; frame-src risk.checkout.com risk.sandbox.checkout.com; report-uri https://payment-interfaces-security-reports.api.checkout.com/csp-report;