# | Time Frame | Framing Control | TLS Enforce | Content Control | Third JS Parties | 'unsafe-inline' | http / https / * | data: | Diffs | Normalized Policy |
---|---|---|---|---|---|---|---|---|---|---|
0 |
2018-07-18 - END |
True |
True |
True |
0 |
True |
True |
False |
0 |
base-uri 'self'; child-src https:; connect-src https:; default-src data: https: 'unsafe-inline' 'unsafe-eval'; font-src data: https:; frame-ancestors 'none'; img-src data: https:; media-src https:; object-src 'none'; script-src https: 'unsafe-inline' 'unsafe-eval'; style-src https: 'unsafe-inline'; upgrade-insecure-requests; |