# | Time Frame | Framing Control | TLS Enforce | Content Control | Third JS Parties | 'unsafe-inline' | http / https / * | data: | Diffs | Normalized Policy |
---|---|---|---|---|---|---|---|---|---|---|
0 |
2018-10-28 - 2018-12-14 |
False |
False |
True |
0 |
True |
True |
False |
0 |
connect-src * 'unsafe-inline'; default-src * 'unsafe-inline' 'unsafe-eval'; frame-src *; header x-content-security-policy: set default-src * 'unsafe-inline' 'unsafe-eval'; img-src blob: data: * 'unsafe-inline'; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline'; |
1 |
2018-12-15 - END |
False |
False |
True |
0 |
True |
True |
False |
13 |
connect-src *; default-src * 'unsafe-inline' 'unsafe-eval'; font-src data: *; frame-src *; img-src data: *; media-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src data: * 'unsafe-inline'; |