Content-Security-Policy | script-src 'unsafe-inline' 'self' https://ajax.googleapis.com http://clients1.google.com https://apis.google.com https://maxcdn.bootstrapcdn.com http://dpua31b8kol8m.cloudfront.net http://heatmap.onesearch.org http://akdapi.com http://pkc.akdapi.com http://cdn.inspectlet.com/ http://dailyverses.net http://connect.facebook.net https://www.google-analytics.com/ https://staticxx.facebook.com http://staticxx.facebook.com http://js-agent.newrelic.com; child-src https://staticxx.facebook.com http://staticxx.facebook.com; report-uri /home/test |