25 directives

Content-Security-Policy

frame-src Keyword
'self'
frame-src Host
frame-src Host
frame-src Scheme
blob:
frame-src Scheme
data:
frame-src Scheme
https:
frame-src Host
frame-ancestors Keyword
'self'
base-uri Keyword
'self'
connect-src Keyword
'self'
connect-src Host
connect-src Scheme
https:
connect-src Host
connect-src Host
connect-src Host
connect-src Scheme
data:
connect-src Host
default-src Keyword
'self'
font-src Keyword
'self'
img-src Keyword
'self'
img-src Scheme
data:
img-src Scheme
https:
img-src Host
img-src Host
img-src Host
img-src Host
media-src Scheme
https:
media-src Host
media-src Host
media-src Host
media-src Scheme
data:
media-src Host
object-src Keyword
'none'
script-src Keyword
'self'
script-src Keyword
'unsafe-inline'
style-src Keyword
'self'
style-src Keyword
'unsafe-inline'
upgrade-insecure-requests Source
(no sources)

Content-Security-Policy-Report-Only

frame-src Keyword
'self'
frame-src Host
frame-src Host
frame-src Scheme
blob:
frame-src Scheme
data:
frame-src Scheme
https:
frame-src Host
frame-ancestors Keyword
'self'
base-uri Keyword
'self'
connect-src Keyword
'self'
connect-src Host
connect-src Scheme
https:
connect-src Host
connect-src Host
connect-src Host
connect-src Scheme
data:
connect-src Host
default-src Keyword
'self'
font-src Keyword
'self'
img-src Keyword
'self'
img-src Scheme
data:
img-src Scheme
https:
img-src Host
img-src Host
img-src Host
img-src Host
media-src Scheme
https:
media-src Host
media-src Host
media-src Host
media-src Scheme
data:
media-src Host
object-src Keyword
'none'
script-src Keyword
'self'
script-src Keyword
'unsafe-inline'
style-src Keyword
'self'
style-src Keyword
'unsafe-inline'