Content-Security-Policy: default-src 'none'; script-src 'self' *.b0e8.com *.bc0a.com marvel-b2-cdn.bc0a.com www.google-analytics.com www.googletagmanager.com play.vidyard.com assets.vidyard.com unpkg.com *.newrelic.com snap.licdn.com static.ads-twitter.com analytics.twitter.com www.googleadservices.com script.hotjar.com static.hotjar.com 972-oec-621.mktoweb.com munchkin.marketo.net j.6sc.co bam.nr-data.net geolocation.onetrust.com *.google.com tpc.googlesyndication.com maps.googleapis.com www.gstatic.com js.hsforms.net *.hsforms.com *.pressganey.com *.cdntwrk.com www.googleoptimize.com connect.facebook.net js.hs-scripts.com js.usemessages.com js.hs-analytics.net js.hs-banner.com cdn.cookielaw.org *.wistia.com *.wistia.net src.litix.io fast.wistia.com *.googletagmanager.com info.pressganey.com js.hsleadflows.net cdn.linkedin.oribi.io *.hubspot.com analytics.google.com *.zi-scripts.com *.zoominfo.com js.hsadspixel.net googleads.g.doubleclick.net go.rioseo.com *.smartrecruiters.com js.driftt.com cdn.bizible.com region1.analytics.google.com go.forsta.com cdn.pathfactory.com cdn-app.pathfactory.com 'unsafe-eval' browser.sentry-cdn.com www.googleadservices.com www.facebook.com cdn.dreamdata.cloud 'unsafe-inline' 'unsafe-eval'; style-src 'self' 972-oec-621.mktoweb.com fonts.googleapis.com legal.pressganey.com static.smartrecruiters.com *.hsforms.com *.wistia.com *.cdntwrk.com *.googletagmanager.com *.google.com *.hubspot.com go.rioseo.com region1.analytics.google.com go.forsta.com cdn.pathfactory.com cdn-app.pathfactory.com 'unsafe-inline'; frame-ancestors 'self' *.forsta.com *.rioseo.com js.zi-scripts.com/zi-tag.js ; frame-src play.vidyard.com vars.hotjar.com 972-oec-621.mktoweb.com tpc.googlesyndication.com *.google.com www.googletagmanager.com survey.us.confirmit.com js.hsforms.net *.hsforms.com www.facebook.com app.livestorm.co *.hubspot.com resources.rioseo.com *.smartrecruiters.com js.driftt.com region1.analytics.google.com fast.wistia.com go.forsta.com td.doubleclick.net cdn.pathfactory.com cdn-app.pathfactory.com go.rioseo.com fast.wistia.net; object-src 'none'; base-uri 'self'; form-action 'self' webto.salesforce.com *.hsforms.com www.facebook.com *.google.com *.hubspot.com go.rioseo.com region1.analytics.google.com go.forsta.com cdn.pathfactory.com cdn-app.pathfactory.com; connect-src 'self' *.rioseo.com go.pressganey.com play.vidyard.com www.google-analytics.com cdn.cookielaw.org 972-oec-621.mktoresp.com 972-oec-621.mktoutil.com secure.adnxs.com stats.g.doubleclick.net bam.nr-data.net privacyportal.onetrust.com geolocation.onetrust.com adservice.google.com *.googleapis.com www.googletagmanager.com www.googleapis.com maps.googleapis.com *.6sc.co digitalfeedback.us.confirmit.com vc.hotjar.io *.hotjar.com wss://*.hotjar.com *.hsforms.com *.cdntwrk.com js.hs-banner.com https://*.litix.io https://*.wistia.com https://embedwistia-a.akamaihd.net https://api.glitch.com www.facebook.com cdn.linkedin.oribi.io *.hubspot.com analytics.google.com *.zi-scripts.com ws.zoominfo.com api.hubapi.com 425-fdd-771.mktoresp.com jukebox.pathfactory.com region1.google-analytics.com region1.analytics.google.com go.forsta.com *.linkedin.com *.google.com *.6sense.com googleads.g.doubleclick.net cdn.pathfactory.com cdn-app.pathfactory.com spcollector.pathfactory.com unpkg.com/@lottiefiles/[email protected]/dist/lottie-player.js.map cdn.dreamdata.cloud fast.wistia.net www.googleadservices.com www.facebook.com; font-src 'self' data: fonts.gstatic.com *.cdntwrk.com *.hubspot.com *.smartrecruiters.com region1.analytics.google.com go.forsta.com cdn.pathfactory.com cdn-app.pathfactory.com; media-src 'self' blob: data: *.wistia.com *.wistia.net embedwistia-a.akamaihd.net embed-fastly.wistia.com *.google.com *.hubspot.com region1.analytics.google.com go.forsta.com *.linkedin.com js.driftt.com *.pathfactory.com cdn.pathfactory.com cdn-app.pathfactory.com ; img-src https: data:; report-uri https://rioseo.report-uri.com/r/t/csp/enforce