Content-Security-Policy: default-src 'self' https: 'unsafe-inline' blob: data:; connect-src 'self' account.envato.com:* *.google-analytics.com *.analytics.google.com *.googletagmanager.com *.g.doubleclick.net *.google.com *.googlesyndication.com *.litix.io *.wistia.com embedwistia-a.akamaihd.net api.btloader.com www.facebook.com consentcdn.cookiebot.com www.clarity.ms a.clarity.ms b.clarity.ms c.clarity.ms d.clarity.ms e.clarity.ms f.clarity.ms g.clarity.ms h.clarity.ms i.clarity.ms j.clarity.ms k.clarity.ms l.clarity.ms m.clarity.ms n.clarity.ms o.clarity.ms p.clarity.ms q.clarity.ms r.clarity.ms s.clarity.ms t.clarity.ms u.clarity.ms v.clarity.ms w.clarity.ms x.clarity.ms y.clarity.ms z.clarity.ms c.bing.com *.amazon-adsystem.com cdn.jsdelivr.net *.publisher-services.amazon.dev id5-sync.com lb.eu-1-id5-sync.com/lb/v1 www.tiktok.com www.tiktokcdn.com static.tutsplus.com; font-src 'self' static.tutsplus.com cdn.tutsplus.com cms-assets.tutsplus.com data:; frame-ancestors 'self'; frame-src www.tiktok.com www.facebook.com platform.twitter.com www.youtube.com www.instagram.com twitter.com www.linkedin.com assets.pinterest.com mastodon.social consentcdn.cookiebot.com www.recaptcha.net codepen.io cdpn.io *.google-analytics.com *.analytics.google.com *.googletagmanager.com *.g.doubleclick.net *.google.com *.googlesyndication.com www.googleadservices.com fast.wistia.net fast.wistia.com; img-src 'self' https: 'unsafe-inline' blob: data: www.tiktokcdn.com; media-src 'self' https: 'unsafe-inline' blob: data: www.tiktokcdn.com; object-src 'none'; script-src 'self' https: 'unsafe-inline' blob: data: 'unsafe-eval' www.tiktok.com www.tiktokcdn.com; style-src 'self' https: 'unsafe-inline' blob: data: www.tiktokcdn.com