Content-Security-Policy | script-src 'self' 'unsafe-inline' 'unsafe-eval' *.yandex.ru https://*.yandex.ru www.google-analytics.com https://www.google-analytics.com www.gstatic.com code.jquery.com *.mail.ru *.cloudflare.com *.jquery.com https://code.jquery.com *.rambler.ru https://cdnjs.cloudflare.com *.grt02.com *.grt03.com code.directadvert.ru st.directadvert.ru www.directadvert.ru share.pluso.ru; frame-src 'self' https://www.youtube.com; connect-src 'self' mc.yandex.ru https://mc.yandex.ru http://www.google-analytics.com http://ajax.googleapis.com; report-uri /csp/collector.php |