Content-Security-Policy | default-src * data:; child-src 'none'; connect-src 'self'; font-src 'self' https://fast.fonts.net https://fonts.gstatic.com data:; form-action 'self'; frame-ancestors 'self'; frame-src 'self' https://api-efb8753d.duosecurity.com https://www.google.com/recaptcha/ https://js.stripe.com https://*.applov.in https://player.vimeo.com https://www.google.com; img-src 'self' https://*.googleusercontent.com https://*.ggpht.com https://*.applovin.com http://*.applovin.com http://*.mzstatic.com https://www.google.com https://stats.g.doubleclick.net https://www.facebook.com https://www.google-analytics.com https://privacy-policy.truste.com/privacy-seal/seal data:; media-src http://*.applovin.com https://*.applovin.com data:; object-src 'self'; script-src 'self' https://fast.fonts.net/jsapi/693a4d43-ba73-4282-9bfc-5eb037f09584.js https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ https://js.stripe.com https://www.googletagmanager.com https://www.google-analytics.com https://script.crazyegg.com https://connect.facebook.net https://www.woopra.com https://cdnjs.cloudflare.com/ajax/libs/jquery/1.11.3/jquery.min.js https://cdnjs.cloudflare.com/ajax/libs/jquery-migrate/1.2.1/jquery-migrate.min.js https://static.woopra.com https://api.greenhouse.io 'unsafe-inline' 'unsafe-eval'; style-src 'self' https://fast.fonts.net https://fonts.googleapis.com 'unsafe-inline'; report-uri /api/contentSecurityPolicy; |