Content-Security-Policy | default-src 'self' blob: https:;img-src data: 'self' https://www.google-analytics.com https://maps.gstatic.com https://maps.googleapis.com https://csi.gstatic.com/ https://i.ytimg.com https://www.youtube-nocookie.com/ https://img.youtube.com/; object-src 'self' ;font-src data: 'self' https://fonts.gstatic.com/s/raleway/ https://fonts.gstatic.com/s/roboto/;worker-src blob: ;frame-src 'self' https://www.youtube.com/ https://content.googleapis.com https://accounts.google.com https://www.youtube-nocookie.com; script-src 'self' 'nonce-07555d77-d0e5-4027-bc60-a5ab7c15ed10' 'unsafe-eval' https://cdn.rawgit.com/google/code-prettify/master/loader/run_prettify.js https://www.google-analytics.com https://maps.googleapis.com https://apis.google.com https://www.google.com/jsapi https://www.google.com/uds/; style-src 'self' 'unsafe-inline' https://cdn.rawgit.com/google/code-prettify/master/loader/ https://fonts.googleapis.com https://www.google.com/uds/api/visualization/1.0/ https://ajax.googleapis.com/ajax/static/modules/gviz/1.0/; connect-src 'self' https://sentry.duodesign.co.uk ws://www.duodesign.co.uk wss://www.duodesign.co.uk https://www.youtube-nocookie.com; |