# | Time Frame | Framing Control | TLS Enforce | Content Control | Third JS Parties | 'unsafe-inline' | http / https / * | data: | Diffs | Normalized Policy |
---|---|---|---|---|---|---|---|---|---|---|
0 |
2018-10-30 - END |
False |
True |
True |
3 |
True |
False |
False |
0 |
child-src 'self' www.google.com www.youtube.com; connect-src 'self'; default-src https: 'unsafe-inline' 'unsafe-eval'; font-src fonts.gstatic.com fonts.googleapis.com; form-action 'self'; img-src 'self' data: www.google-analytics.com; media-src 'none'; object-src 'none'; script-src ajax.googleapis.com 'self' www.googletagmanager.com 'unsafe-inline' www.google-analytics.com; style-src 'self' fonts.googleapis.com code.jquery.com 'unsafe-inline'; |