Content-Security-Policy | default-src 'self'; connect-src 'self' *.notion.so:* ws://*.notion.so:* wss://*.notion.so:* *.intercom.io wss://*.intercom.io api.segment.io api.embed.ly api.mixpanel.com *.slack.com s3.amazonaws.com/uploads.intercomcdn.com; script-src 'self' 'unsafe-eval' *.notion.so connect.facebook.net *.googleadservices.com *.google-analytics.com *.intercomcdn.com *.intercom.io *.segment.com apis.google.com plus.google.com cdnjs.cloudflare.com cdn.mxpnl.com; style-src 'self' 'unsafe-inline' *.notion.so; img-src * data:; media-src *; font-src 'self'; frame-src player.vimeo.com apis.google.com plus.google.com accounts.google.com cdn.embedly.com; |