Search completed in 1.43 seconds.
1 results for "userScripts":
Content Security Policy (CSP) - HTTP
WebHTTPCSP
content-security-policy: default-src 'self'; img-src *; media-src media1.com media2.com; script-src userscripts.example.com here, by default, content is only permitted from the document's origin, with the following exceptions: images may load from anywhere (note the "*" wildcard).
... executable script is only allowed from userscripts.example.com.