Content-Security-Policy | default-src 'self' *.google-analytics.com vine.co disqus.com *.vine.co *.disqus.com; script-src 'self' wowjs.zamimg.com static.wowhead.com www.wowhead.com wow.zamimg.com *.google-analytics.com *.disqus.com *.googleapis.com *.vine.co code.jquery.com cdnjs.cloudflare.com maxcdn.bootstrapcdn.com data: 'unsafe-inline' 'unsafe-eval'; style-src 'unsafe-inline' 'self' *.googleapis.com *.disquscdn.com wow.zamimg.com wowcss.zamimg.com maxcdn.bootstrapcdn.com; font-src 'self' *.gstatic.com maxcdn.bootstrapcdn.com; img-src 'self' * data:; |