Content-Security-Policy: default-src 'none'; script-src 'self' 'unsafe-eval' https://maps.googleapis.com https://61l9w6d0l9vh.statuspage.io https://*.churnzero.net https://static.cloudflareinsights.com https://*.intercom.io https://*.intercomcdn.com 'sha256-1e5RR2OpHhuX2h0Bat19DsNTmqbo4M3T1pqfeTXCHaA='; img-src 'self' blob: data: http://* https://*; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://unpkg.com; font-src 'self' https://fonts.gstatic.com https://*.intercomcdn.com; frame-src 'self' https://*.quicksight.aws.amazon.com https://*.statuspage.io https://*.auth0.com https://*.truepic.ninja https://*.truepic.com https://*.truepic-staging.uk https://*.truepic.uk https://intercom-sheets.com https://www.intercom-reporting.com https://www.youtube.com https://player.vimeo.com https://fast.wistia.net; frame-ancestors 'none'; connect-src 'self' https://*.churnzero.net https://*.googleapis.com https://*.truepic.ninja https://*.truepic.com https://*.truepic.io https://*.truepic-staging.uk https://*.truepic.uk https://*.mixpanel.com https://cloudflareinsights.com https://*.auth0.com https://*.statuspage.io https://*.cloudfront.net https://cdn.plyr.io https://*.sentry.io https://s3.amazonaws.com https://*.intercom.io https://*.intercom-messenger.com wss://*.intercom-messenger.com wss://*.intercom.io https://*.intercomcdn.com https://*.intercomcdn.eu https://*.intercomusercontent.com; media-src 'self' https://images.truepic.com https://*.truepic-staging.uk https://*.truepic.uk https://*.cloudfront.net https://cdn.plyr.io https://*.intercomcdn.com https://*.intercomcdn.eu; base-uri 'self'; form-action 'self' https://intercom.help https://*.intercom.io; manifest-src 'self'; child-src 'self' https://intercom-sheets.com https://www.intercom-reporting.com https://www.youtube.com https://player.vimeo.com https://fast.wistia.net