Content-Security-Policy: default-src 'self';  script-src 'self' 'unsafe-eval' 'unsafe-inline'    https://api.cloudflare.com    *.kargo.com    tag.bounceexchange.com    tag.wknd.ai    assets.bounceexchange.com    api.bounceexchange.com    dev.bounceexchange.com    dash.bounceexchange.com    dash-staging.bounceexchange.com    *.rfihub.com    *.rfihub.net    *.sixflags.com    *.googletagmanager.com    *.googlesyndication.com    storage.googleapis.com    *.youtube.com    *.ujet.co    *.sentry-cdn.com    *.algolia.net    *.algolianet.com    *.sixflags.net    *.abtasty.com    *.osano.com    *.api.osano.com    *.datasubject.com    *.quantummetric.com    *.clarity.ms    core.sanity-cdn.com    acsbapp.com    unpkg.com    *.ondigitalocean.app    *.attractions.io    *.pinterest.com    connect.facebook.net    *.buy.sixflags.com    *.store.sixflags.com    s.pinimg.com    *.g.doubleclick.net    cdn.attn.tv    *.attn.tv    https://bat.bing.com/bat.js    https://live.rezync.com    https://cdn.boomtrain.com    https://bat.bing.com    https://bat.bing.com/p/action    https://bat.bing.com/p/action/247012320.js    https://connect.facebook.net/en_US/fbevents.js    https://try.abtasty.com    https://www.google.com    https://analytics.google.com    https://www.gstatic.com    *.taboola.com    https://cloudpresskit.com    *.clickandchat.com;  style-src 'self' 'unsafe-inline' *.abtasty.com assets.bounceexchange.com *.clickandchat.com;  img-src 'self' data: blob: assets.bounceexchange.com events.bouncex.net *.cdnwidget.com pippio.com *.store.sixflags.com *.liadm.com *.clarity.ms *.buy.sixflags.com https://www.google.com https://i.liadm.com  https://ad.doubleclick.net https://analytics.google.com https://www.facebook.com  *.g.doubleclick.net https://live.rezync.com https://bat.bing.com https://trc.taboola.com *.wistia.com *.youtube.com *.googlesyndication.com  *.moengage.com *.googletagmanager.com *.ytimg.com *.abtasty.com https://cloudpresskit.com https://static.cloudpresskit.com https://bat.bing.com/action events.attentivemobile.com *.attn.tv *.clickandchat.com cdn.sanity.io static.sixflags.com six-flags.s3.amazonaws.com assets.sixflags.com;  font-src 'self' data:    https://cloudpresskit.com assets.bounceexchange.com *.clickandchat.com;  object-src 'none';  base-uri 'self';  form-action 'self' api.bounceexchange.com dev.bounceexchange.com;  frame-ancestors 'self';  frame-src * www.google.com recaptcha.google.com assets.bounceexchange.com dash.bounceexchange.com dash-staging.bounceexchange.com *.google.com *.buy.sixflags.com *.store.sixflags.com creatives.attn.tv *.attn.tv;  worker-src blob:;  child-src blob: assets.bounceexchange.com;  connect-src 'self' ws:    cognito-idp.us-east-2.amazonaws.com    api.bounceexchange.com    *.kargo.com    coupons.bounceexchange.com    events.bouncex.net    *.cdnwidget.com    *.cdnbasket.net    *.boomtrain.com    *.clarity.ms    *.doubleclick.net    https://www.facebook.com    https://analytics.google.com    https://bat.bing.com    https://bat.bing.com/p/action    https://bat.bing.com/p/action/247012320.js    *.wistia.com    *.acsbapp.com    *.moengage.com    *.sixflags2024.dev    *.quantummetric.com    *.sfdev.co    api.sixflags.net    *.store.sixflags.com    *.buy.sixflags.com    *.youtube.com    *.api.osano.com    *.osano.com    *.algolia.net    *.algolianet.com    *.sixflags.net    *.abtasty.com    *.pinterest.com    *.taboola.com    *.ondigitalocean.app    *.attractions.io    *.googletagmanager.com    *.intentia.com    fg8vvsvnieiv3ej16jby.litix.io    *.googleadservices.com    events.attentivemobile.com    *.attn.tv    https://d18car1k0ff81h.cloudfront.net    https://prod.six-mt.com    https://live.rezync.com    https://www.google.com    https://static.cloudpresskit.com    https://www.google-analytics.com    https://us-central1-missi-six-prod.cloudfunctions.net    https://cloudpresskit.com    *.cloudfront.net    *.clickandchat.com;  manifest-src 'self' accounts.google.com *.abtasty.com;  media-src 'self' blob: *.youtube.com *.clickandchat.com;  upgrade-insecure-requests;