Content-Security-Policy: report-uri /collect-csp; script-src 'self' 'unsafe-inline' blob: 'wasm-unsafe-eval' 'unsafe-eval' https://c.bing.com https://*.clarity.ms https://static.gemini.com https://www.google-analytics.com https://dx.mountain.com https://px.mountain.com https://cdn.sift.com https://analytics.google.com connect.facebook.net https://try.access.worldpay.com https://access.worldpay.com https://*.googletagmanager.com https://sc-static.net/ https://www.googleadservices.com https://pagead2.googlesyndication.com *.doubleclick.net/ https://www.redditstatic.com https://alb.reddit.com https://js.verygoodvault.com https://js3.verygoodvault.com *.bing.com/ https://analytics.tiktok.com *.braze.com https://snap.licdn.com/ https://px.ads.linkedin.com/ https://static.ads-twitter.com/ https://analytics.twitter.com/ https://platform.twitter.com/ https://pixel.mathtag.com/ https://edge.fullstory.com https://rs.fullstory.com https://maps.googleapis.com *.braintreegateway.com https://cdn.plaid.com https://api.dev.sardine.ai/assets/loader.min.js https://api.sandbox.sardine.ai/assets/loader.min.js https://api.sardine.ai/assets/loader.min.js https://api.sardine.ai https://a.gemini.com/assets/loader.min.js https://a.gemini.com *.zendesk.com *.zdassets.com *.smooch.io wss://api.smooch.io/faye https://gemini241735838340.zendesk.com/ https://zendesk-eu.my.sentry.io/ *.paypal.com https://poweredby.dosh.com/ https://cdn.checkout.com https://js.checkout.com https://scripts.neuro-id.com/ https://receiver.neuroid.cloud/ https://logs.neuro-id.com/ https://advanced.neuro-id.com/ https://rc.dn.neuroid.cloud https://dn.neuroid.cloud https://sdk.dv.socure.io/ https://ingestion.dv.socure.io/ https://analytics.dv.socure.io/ https://tr.snapchat.com https://tr6.snapchat.com https://sc-static.net https://*.awswaf.com https://www.google.com/pagead/1p-conversion/ https://a.gemini.com https://sdk.onfido.com https://api.onfido.com https://api.eu.onfido.com https://apis.google.com browser.sentry-cdn.com https://app.link https://cdn.mgln.ai https://onelinksmartscript.appsflyer.com static.gemini.com https://assets.gemini.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://recaptchaenterprise.googleapis.com/; font-src 'self' data: * static.gemini.com; media-src 'self' data: blob: * static.gemini.com www.gemini.com https://assets.gemini.com; style-src 'self' 'unsafe-inline' https://cloud.typography.com https://static.gemini.com https://fonts.googleapis.com blob: https://sdk.onfido.com usefontawesome.com www.gstatic.com static.gemini.com https://assets.gemini.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://recaptchaenterprise.googleapis.com/; object-src 'self'; default-src 'self'; frame-src 'self' * https://exchange.gemini.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://recaptcha.google.com/recaptcha/ https://recaptchaenterprise.googleapis.com/ blob:; img-src 'self' data: blob: * static.gemini.com www.gemini.com https://assets.gemini.com; connect-src 'self' * https://creditcard.exchange.gemini.com https://creditcard.exchange.gemini.com https://assets.gemini.com; worker-src 'self' blob: