Content-Security-Policy: frame-src 'self' https://cdn.merge.dev https://*.google.com https://*.google.co https://*.hotjar.com https://*.okta.com https://*.workmotion.com https://www.googletagmanager.com https://workmotiongmbh--partialsb.sandbox.my.salesforce.com https://service.force.com https://*.stonly.com https://stonly.com; frame-ancestors 'none'; base-uri 'none'; img-src 'self' https://*.googletagmanager.com https://*.google.com https://cdnjs.cloudflare.com https://*.workmotion.com https://d3jmw2ahg7ct95.cloudfront.net https://*.productfruits.com https://*.hotjar.com https://workmotion-private.s3.eu-central-1.amazonaws.com https://storage.googleapis.com https://purecatamphetamine.github.io https://media.stonly.com data: ;