Content-Security-Policy: frame-ancestors 'self';

Content-Security-Policy-Report-Only: default-src 'self' https://d35ktwnl3xowdc.cloudfront.net https://static.eu.sprinto.com/; connect-src 'self' https://static.eu.sprinto.com/ http://127.0.0.1:37370 *.mixpanel.com *.sentry.io https://browser-intake-datadoghq.com *.browser-intake-datadoghq.com *.clearbit.com *.logo.dev cdn.tiny.cloud *.amazonaws.com https://*.hsforms.com; img-src 'self' https://static.eu.sprinto.com/ *.amazonaws.com *.clearbit.com *.logo.dev *.oktacdn.com sp.tinymce.com 'report-sample' https://*.hsforms.com; worker-src 'self' https://static.eu.sprinto.com/ blob:; style-src 'self' https://static.eu.sprinto.com/ sprinto-team.freshchat.com cdn.tiny.cloud fonts.googleapis.com 'unsafe-inline'; script-src 'self' https://static.eu.sprinto.com/ sprinto-team.freshchat.com https://cdnjs.cloudflare.com/ajax/libs/pdf.js/4.8.69/pdf.worker.mjs cdn.tiny.cloud cdn.merge.dev 'report-sample' https://*.hsforms.net; font-src 'self' https://static.eu.sprinto.com/ fonts.gstatic.com 'report-sample'; frame-src 'self' https://static.eu.sprinto.com/ sprinto-team.freshchat.com form.typeform.com cdn.merge.dev giphy.com;