Content-Security-Policy | default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.capco.com *.fisglobal.com *.wistia.net *.wistia.com *.addtoany.com *.google-analytics.com *.litix.io *.marketo.net *.googletagmanager.com *.hotjar.com *.yourvoice2us.com *.webtrends.com *.webtrendslive.com *.facebook.net *.oktopost.com *.google.com *.marketo.com okt.to static.addtoany.com *.googleadservices.com *.jquery.com *.googleapis.com *.licdn.com *.linkedin.com *.bizographics.com *.adnxs.com *.cloudflare.com; connect-src 'self' *.capco.com *.fisglobal.com *.wistia.com *.litix.io *.yahooapis.com *.mktoresp.com *.hotjar.com *.akamaihd.net *.facebook.com *.linkedin.com; img-src 'self' 'unsafe-inline' data: *.capco.com *.fisglobal.com *.wistia.com *.wistia.net *.doubleclick.net *.litix.io *.google-analytics.com capcouat.fisglobal.com fast.wistia.net *.webtrendslive.com *.google.com *.marketo.com *.facebook.com *.akamaihd.net *.googleadservices.com *.gstatic.com *.adnxs.com; style-src 'self' 'unsafe-inline' *.capco.com *.fisglobal.com *.wistia.com *.wistia.net *.bootstrapcdn.com *.googleapis.com *.marketo.com *.googleapis.com; child-src 'self' 'unsafe-inline' *.capco.com *.fisglobal.com *.sitecore.net *.wistia.com *.wistia.net *.nyceinfomanager.com *.peopleclick.com *.hotjar.com *.fls.doubleclick.net *.youtube.com *.segmint.net *.marketo.com fast.wistia.net *.ceros.com *.fisevents.com http://fisevents.com *.frontarena.com; font-src 'self' 'unsafe-inline' data: *.capco.com *.fisglobal.com *.wistia.com *.wistia.net capcouat.fisglobal.com fast.wistia.net *.bootstrapcdn.com *.gstatic.com; media-src 'self' 'unsafe-inline' blob: data: *.capco.com *.fisglobal.com *.wistia.com *.wistia.net capcouat.fisglobal.com fast.wistia.net |