Content-Security-Policy Analysis for https://static.forms.office.com

Open Cached · just now

6 directives

Content-Security-Policy

Content-Security-Policy: object-src 'none';script-src 'nonce-18869e09-b837-4153-a350-e9011c4dc88c' 'unsafe-inline' 'unsafe-eval' 'strict-dynamic' https:;base-uri 'none';require-trusted-types-for 'script'; report-uri https://csp.microsoft.com/report/Forms-PROD;report-to endpoint-1;

object-src Keyword —

'none'

script-src Nonce —

'nonce-18869e09-b837-4153-a350-e9011c4dc88c'

script-src Keyword —

'unsafe-inline'

script-src Keyword —

'unsafe-eval'

script-src Keyword —

'strict-dynamic'

script-src Scheme —

https: