Content-Security-Policy: upgrade-insecure-requests;connect-src app.pendo.io data.pendo.io https://pendo-static-5872700213952512.storage.googleapis.com https://storage.googleapis.com/workbox-cdn/* *.sentry.io *.salesforce.com 'self' *.mobify.com *.demandware.com *.mobify-storefront-staging.com *.mrt-storefront-soak.com *.mrt-storefront-staging.com *.mobify-storefront.com *.exp-delivery-staging.com *.exp-delivery-soak.com *.exp-delivery-staging-ci.com *.exp-delivery.com;frame-src *;child-src app.pendo.io 'self' *.mobify.com *.demandware.com *.mobify-storefront-staging.com *.mrt-storefront-soak.com *.mrt-storefront-staging.com *.mobify-storefront.com *.exp-delivery-staging.com *.exp-delivery-soak.com *.exp-delivery-staging-ci.com *.exp-delivery.com;frame-ancestors app.pendo.io 'self' *.mobify.com *.demandware.com *.mobify-storefront-staging.com *.mrt-storefront-soak.com *.mrt-storefront-staging.com *.mobify-storefront.com *.exp-delivery-staging.com *.exp-delivery-soak.com *.exp-delivery-staging-ci.com *.exp-delivery.com;img-src cdn.pendo.io app.pendo.io pendo-static-5872700213952512.storage.googleapis.com data.pendo.io 'self' *.mobify.com *.demandware.com *.mobify-storefront-staging.com *.mrt-storefront-soak.com *.mrt-storefront-staging.com *.mobify-storefront.com *.exp-delivery-staging.com *.exp-delivery-soak.com *.exp-delivery-staging-ci.com *.exp-delivery.com;script-src unsafe-inline unsafe-eval app.pendo.io pendo-io-static.storage.googleapis.com cdn.pendo.io pendo-static-5872700213952512.storage.googleapis.com data.pendo.io 'sha256-q5pc1rl7kKnxe4CS+vO5fkR9OfTNM07CnIHd1amTyE0=' 'self' *.mobify.com *.demandware.com *.mobify-storefront-staging.com *.mrt-storefront-soak.com *.mrt-storefront-staging.com *.mobify-storefront.com *.exp-delivery-staging.com *.exp-delivery-soak.com *.exp-delivery-staging-ci.com *.exp-delivery.com;default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';object-src 'none';script-src-attr 'none';style-src 'self' https: 'unsafe-inline'